On Ben's note I got a call from my daughter looking for a free encryption
program for a friend. Before I was able to reply she had already found one.
My daughters is already encrypted.
Now to my question:
What WOULD be a good free (and it must be free) disk encryption software to
use?
Background:
University/College students enrolled in at least the medical fields are being
required to encrypt their personal machines and any additional drives they
store data to. I would prefer to not give bad advice, and since the minds that
are in this group and younger and more flexible than mine, I am hoping to get
some GOOD advice to pass on as needed.
Thank you in advance
Jon
> From: [email protected]
> Date: Thu, 29 Jan 2015 11:42:04 -0500
> Subject: Re: [NTSysADM] SSD scrub/sanitize/wipe
> To: [email protected]
>
> On Thu, Jan 29, 2015 at 8:54 AM, Richard Stovall <[email protected]> wrote:
> > I recently had to return a personal laptop for replacement and could not
> > find a method for securely erasing its SSD.
>
> Define "secure".
>
> Personally, for most data, I'd be content with executing a TRIM
> command over the entire disk.
>
> > I came upon the idea of encrypting the entire drive as one way of virtually
> > guaranteeing that data could not be recovered.
>
> This is the preferred approach in general. By encrypting all your
> data up-front, before it's ever written to disk, all you need to do is
> destroy the key, and now the blocks on disk cannot be recovered. (Or,
> more precisely, they're as safe as the encryption implementation makes
> them.)
>
> However, this is only full-proof if you do it in advance. Doing it
> after the fact is the same as doing any other kind of overwrite -- it
> may leave data behind in relocated sectors, protected areas, or other
> magic locations.
>
> > What are others doing in this regard?
>
> DoD still says disks with classified information must by physically
> destroyed.
>
> > PS Steve Gibson is good for something after all!
> > https://www.grc.com/misc/truecrypt/truecrypt.htm
>
> The fact that Gibson says TrueCrypt is still trustworthy makes me
> trust it less.
>
> -- Ben
>
>
