Got a question for the computer heads on here.I store sensitive data on virtual encrypted volumes,AES-encrypted files which can be mounted as if they were disk drives (with a DOS drive letter too).Is this still good enough.On a forum they were talking of triple blowfish as being the thing to encryt with,but AES is considered one of the best strong encryption algorithms available is it not? No known cryptanalysis attacks conducted against this method have been successful.What do you think?What do you use?

Marcus

Way above my head, I'm afraid. Just wish I had known about these things before my last divorce. My ex just threw my diaries and accounts on the table and said, "Pay up"

Marcus, I don't know anything about 'triple blowfish' but do know that AES encryption is held in high regard in most circles. That does not mean that it is 100% safe though. Nothing on a computer ever is. Just a couple of examples..
I bought some e-books but wanted to print a hard copy (I wanted to make notes on it). The Adobe software on e-books is suppose to make copying, printing and amending impossible. It took me 5 minutes to download free software that negated the password protected encrytion.
I downloaded a movie. It was in WMF format, which means that you cannot burn it (easily) to a DVD. WMF is a Microsoft copywrite protected format. Again it took me 5 minutes to download free software that converted the file into AVI format so I could burn to a DVD.
I have quoted these examples because they are about large companies who actually need to protect their financial interests.
So, nothing is safe. But encryption is a bit like locking your house & car doors it is certainly a discouragement to the casual thief but would not stop a commited professional.

Bob pretty much sums it up in his above post, at the end of the day, if someone wanted to access something that bad, then they will find a way.

Still my own favourite way of storing sensitive info would be to keep a hard copy on disc or removable storage (usb key or something similar) and keep it locked in a safe, still not unbeatable, but then I really dont think anything is.

An old saying "anything created by man can be broke (or broke into) by man"

"locks only keep an honest man honest"

I guess the only thing I will say is that if you have a file that is encrypted, the only thing you need to worry about is the password to access it. If it can be guessed, then why encrypt

Marcus, ask this question of 10 gurus and you

Still my own favourite way of storing sensitive info would be to keep a hard copy on disc or removable storage (usb key or something similar)

Sean,i think i will follow your thinking and stick the data on an encrypted thumb drive.I was concerned that you may not get even security over all the ports.Does posting to a forum go through port 80,the same port as accessing a web site?

Marcus. Sadly the absolute safest way is a combination of everything everyone has told you.
Encrypt the files.
Store the files on removable data (CD's, DVD's or removable thumb drive etc.)
Lock the removable data away in a safe
Delete all temporary files from your hard disk.
Only use a PC that NEVER connects to any outside source.
Do not have a PC that is wireless enabled.
This will then protect you against most things other than physical theft. Although, in saying that, I have seen a demonstration of equipment that can actually 'read' the images of someones PC screen at a distance of about 100 meters.
The internet theft of data is mainly centred on data that is of immediate use to a criminal - so bank, credit card, debit card details and passwords - you should think very carefully about storing this data on a pc at anytime.
But it can get a bit like not going out the house for fear of being knocked down by a bus!!!
The POSSIBILTY is always there but the PROBABLITY is actually very small, especially if you do take SOME (or even ANY) precautions.

Marcus, if you didn't believe me, here is a page from a US paper today:

http://www.democratandchronicle.com/app ... 1/BUSINESS

I have spyware detection & destroy programs on my PC (2, because they actually find DIFFERENT spyware programs when run. Issue is that neither are exactly like Virus scanners, they do not detect and destroy and warn immediately a Virus attempt happens, you have to physically RUN the programs. Then they find & destroy. Obviously, inbetween running these programs new spy ware could be running & sending data.

Bob

BobHelm wrote:Obviously, inbetween running these programs new spy ware could be running & sending data.

I couldn't agree with you more Bob, like I've mentioned elsewhere on this forum, it only takes a second for a new virii, spy/ad/mal ware or trojan to infect a system.

The key to it, is stopping them dead in their tracks, before they have a chance, thankfully there are a couple of programs that are getting considerably better at doing this, albeit a long way off from being perfect.

My worry stems from the fact i suffered from identity theft before my computer had the anti virus/anti spyware and firewall.The bank returned all the cash but it was very stressful before they did.All it takes is a quick download onto your pc of a keylogger and all your passwords are known.Sean if i cut and paste a password from an encryted file does that register on a key logger?

The other thing that got me thinking was when i analysed the firewall log.Page after page of my computer ports being scanned.

It is worth keeping a check on you internet useage.

A friend who hosts his own web site, so is connected 24/7. His internet providor noticed an increase in traffic on his internet connection, and sent him a bill to suit.

He had the nerds check it out and discovered that not only was he hosting his own site, he was hosting a Russian porn site. It seems they chipped away at his site for a month or so, untill they broke in. The gentle folk managed to partition his hard drive with a hidden partition and set them selves up on his system. After the police examined his system and returned it to him, he has now increased security and keeps a check on usage patterns.

Chang

Definitely worth checking to see who you are connected to every once in a while.Go into DOS(command prompt window) and type NETSTAT then enter and you get a list of current connections.

businessman wrote:Sean if i cut and paste a password from an encryted file does that register on a key logger?

The other thing that got me thinking was when i analysed the firewall log.Page after page of my computer ports being scanned.

I would imagine that a keylogger would not be able to read a password from and cut and paste execution, but it would if you entered the password manually as your keystrokes would be registered.

There are millions of hackers, crackers and god only knows what else all trying to get inside peoples computers, so your so it really doesn't surprise me that your firewall logs showed so many scans. It does help to prove that your firewall is helping to keep them out though