This article is actively undergoing a major edit for a little while. To help avoid edit conflicts, please do not edit this page while this message is displayed. This page was last edited at 21:54, 24 December 2006 (UTC) (18 years ago) – this estimate is cached, . Please remove this template if this page hasn't been edited for a significant time. If you are the editor who added this template, please be sure to remove it or replace it with {{Under construction}} between editing sessions. |
This is a recently created article and the authors may not be familiar with all listed tools.
Information may be incorrect or incomplete, please edit or discuss on talk page if you know better |
Technical feature comparison of different disk encryption software.
General information
| Name | Developer | Introduced date | Licensing | Operating system support | Development status |
|---|---|---|---|---|---|
| BestCrypt | Jetico | 1993 | Commercial, limited source code | Linux 2.6, Windows NT-based, Windows 9x, Windows 3.1, DOS | Maintained |
| PGPDisk | PGP Corporation | 1998 | Commercial, closed source? | Windows NT-based | Maintained |
| cryptoloop | — | 2003-07-02[1] | Free, open source (GPL) | Linux 2.5-2.6 | Deprecated, known vulnerabilities |
| TrueCrypt | TrueCrypt Foundation | 2004-02-02 | Free, open source (custom) | Linux 2.6, Windows NT-based | Actively developed |
| dm-crypt/cryptsetup | — | 2004-03-11[2] | Free, open source (GPL) | Linux 2.6 | Actively developed |
| dm-crypt/LUKS | Clemens Fruhwirth | ? | Free, open source (GPL) | Linux 2.6 | Actively developed |
| FreeOTFE | Sarah Dean | 2004-10-10 | Free, open source (custom) | Windows NT-based, Pocket PC | Actively developed |
Features
| Name | Hidden containers | Pre-boot authentication | Custom authentication | Multiple keys | Passphrase strengthening |
|---|---|---|---|---|---|
| BestCrypt | Yes | No | No | ? | ? |
| PGPDisk | No | No | No | Yes | Yes[3] |
| cryptoloop | No | Yes[4] | Yes | No | No |
| TrueCrypt | Yes | No | No | No | Yes |
| dm-crypt/cryptsetup | No | Yes[4] | Yes | No | No |
| dm-crypt/LUKS | No | Yes[4] | Yes | Yes | Yes |
| FreeOTFE | Yes | No | No | No | Yes |
Layering
| Name | Whole disk | Partition | Logical volume | File | Swap |
|---|---|---|---|---|---|
| BestCrypt | No | ? | No | Yes | Yes |
| PGPDisk | ? | ? | ? | Yes | ? |
| cryptoloop | Yes | Yes | Yes | Yes | Yes |
| TrueCrypt | No | ? | No | Yes | No |
| dm-crypt | Yes | Yes | Yes | Yes[5] | Yes |
| FreeOTFE | No | ? | No | Yes | ? |
Modes of operation
| Name | Plain CBC | CBC with ESSIV | LRW |
|---|---|---|---|
| BestCrypt | Yes | No | No |
| PGPDisk | ? | ? | ? |
| cryptoloop | Yes | Yes | Yes[6] |
| TrueCrypt | Yes | No | Yes[7] |
| dm-crypt | Yes | Yes | Yes[6] |
| FreeOTFE | Yes | Yes | No |
Notes and references
- ^ Initial cryptoloop patches for the Linux 2.5 development kernel: http://uwsg.iu.edu/hypermail/linux/kernel/0307.0/0348.html
- ^ dm-crypt was first included in Linux kernel version 2.6.4: http://lwn.net/Articles/75404/
- ^ PGP private keys are always protected by strenghtened passphrases
- ^ a b c dm-crypt and cryptoloop volumes can be mounted from the initrd before the system is booted
- ^ dm-crypt can encrypt a file-based volume when used with the losetup utility included with all major Linux distributions
- ^ a b Starting with Linux kernel version 2.6.20, CryptoAPI supports the LRW mode: http://lwn.net/Articles/213650/
- ^ New containers created with TrueCrypt versions 4.1 and up use LRW, old containers use plain CBC
See also
 | This cryptography-related article is a stub. You can help Wikipedia by expanding it. |