Post by thangus ornerythinkus
Nevertheless, I cannot think of one single thing which will
advance TC beyond its current version.
Then you haven't thought very hard. For example:
1) two-factor authentication (e.g., using a hardware key
such as Aladdin) - and, no, a separate keyfile doesn't cut it.
2) administrative interface/central management (to allow it
to be used in corporate environments, etc.) Complete with
bells & whistles like revocation, delegation, etc.
3) Fips 140-2 certification (yeah, it's expensive and it's
not a panacea, but it's a *requirement* for many
4) resizing of partitions, containers, etc. (without full
decrypt & rebuild)
5) boot from stub on USB, token, etc. (and, no, Grub kludges
by users don't cut it)
6) "password" entry longer than 64 characters (for users who
prefer long sentence-style passphrases to passwords)
7) single sign-on
8) "shuffling/rotating" keys in memory to inhibit "cold boot"
attack (possibly even putting "keys in registers" a la
and on and on...
Incidentally, many competing encryption products DO have such
PS So-called "open source," of the grossly inferior style
provided by ennead and syncon, is a very feeble reed to lean
on regarding the trustworthiness of Truecrypt.