The Importance of Being VeraCrypt

veracrypt-320x205Ever since the mysterious situation that occurred with TrueCrypt in May of 2014 which raised concerns about its use, one of the many questions I get in to my science and tech podcast–Sovryn Tech–is what should I use to encrypt my drives now? My recommendation has been the same then as it is now: VeraCrypt.

Even though the first round of the audit has been done on TrueCrypt to verify that it wasn’t compromised, I always recommend that people use software that is on a regular development cycle, and is regularly patched, and improved. Which leaves us with using VeraCrypt. It hits the high notes: it’s open source, it’s cross-platform, it allows for plausible deniability, and it’s based off of the truly astonishing work that TrueCrypt already was (and that we’re now pretty certain is still solid, but hey, in the InfoSec world, you rarely want to make 100% certainty statements). I personally use VeraCrypt to encrypt my most important applications, which I use from a USB flash drive (using It works like a charm.

Recently on the fantastic podcast FLOSS Weekly, they did a whole episode about VeraCrypt, and I thought it was just a wonderful, solid introduction to VeraCrypt and the philosophy behind it, and it actually didn’t get too terribly technical, so I feel just about anyone can understand the conversation. There were also some interesting remarks about CipherShed (another disk encryption tool) that are worth paying attention too. Also, the developer of VeraCrypt makes a community call for help with VeraCrypt’s development in this episode, so give him a hand if you are capable!

As I’ve been trying to build (this website) as a “one-stop shop” on your web travels, the VeraCrypt episode–Episode 340 of FLOSS Weekly–is available to be played (YouTube privacy mode is enabled) right from this page.

Carpe lucem!