gurps_npc writes "Forensics Innovations claims to have for sale a product that detects headerless encrypted files, such as TrueCrypt Dynamic files.
It does not decrypt the file, just tells you that it is in fact an encrypted file. It works by detecting hidden patterns that don't exist in a random file. It does not mention stenography, but if their claim is true, it seems that it should be capable of detecting stenographic information as well."
This discussion was created for logged-in users only, but now has been archived.
No new comments can be posted.
your truecrypt file/partition isn't hidden, its just a partion within that partition MAY be hidden. File -encrypted data (to get this you need key1) -stenographic data (to see this you need key2)
Showing that a large file of random data is a truecrypt partition means you can't claim you just did copied dev/rand into a large file, but few people were going to believe that story anyway.
I just wish that trucrypt had support for more stenographic partitions (e.g you can put 2 fake stenographic partions and your rea
From what I understand, when you do a dynamic truecrypt file, it works like this.
1. Create one large file/partition. You need a password to decrypt that file.
2. A small section of that file is itself hidden away so that it can not even be seen as a file, unless you have a second password that is applied to the first large file.
3. You claim that you simply created a larger partition than you needed. While this will not work to say, hide 95 gigabytes in a 100 gigabyte file, it can be used to easily h
you have intermixed different ways of using truecrypt. option 1) create a file, to be mounted as a partition. You create the max size you would want it to be, and it is then filled with noise and then you are asked to decide if you want 1 or 2 passwords (1 or 2 volumes q starting from beginning or another at the end of the file.) File can only be hidden in the manner you hide your OS files (put it in c:\windows\$NtUninstall name it.swp , hidden system file, etc)
truecrypt files arn't hidden (Score:2)
your truecrypt file/partition isn't hidden, its just a partion within that partition MAY be hidden.
File
-encrypted data (to get this you need key1)
-stenographic data (to see this you need key2)
Showing that a large file of random data is a truecrypt partition means you can't claim you just did copied dev/rand into a large file, but few people were going to believe that story anyway.
I just wish that trucrypt had support for more stenographic partitions (e.g you can put 2 fake stenographic partions and your rea
Re: (Score:2)
1. Create one large file/partition. You need a password to decrypt that file.
2. A small section of that file is itself hidden away so that it can not even be seen as a file, unless you have a second password that is applied to the first large file.
3. You claim that you simply created a larger partition than you needed. While this will not work to say, hide 95 gigabytes in a 100 gigabyte file, it can be used to easily h
Re: (Score:2)
you have intermixed different ways of using truecrypt. .swp , hidden system file, etc)
option 1) create a file, to be mounted as a partition. You create the max size you would want it to be, and it is then filled with noise and then you are asked to decide if you want 1 or 2 passwords (1 or 2 volumes q starting from beginning or another at the end of the file.)
File can only be hidden in the manner you hide your OS files (put it in c:\windows\$NtUninstall name it
option 2) leave a un-formated un-partitioned s