TrueCrypt is software for establishing and maintaining an on-the-fly-encrypted volume (data storage device). On-the-fly encryption means that data is automatically encrypted right before it is saved and decrypted right after it is loaded, without any user intervention. No data stored on an encrypted volume can be read (decrypted) without using the correct password/keyfile(s) or correct encryption keys. Entire file system is encrypted (e.g., file names, folder names, contents of every file, free space, meta data, etc).
- Creates a virtual encrypted disk within a file and mounts it as a real disk.
- Encrypts an entire partition or storage device such as USB flash drive or hard drive.
- Encrypts a partition or drive where Windows is installed (pre-boot authentication).
- Encryption is automatic, real-time (on-the-fly) and transparent.
- Parallelization and pipelining allow data to be read and written as fast as if the drive was not encrypted.
- Encryption can be hardware-accelerated on modern processors.
- Provides plausible deniability, in case an adversary forces you to reveal the password:
Let’s create a TrueCrypt Container where we can store our sensitive data (files & folders).
Select from the menu Volumes > Create New Volume…
Choose first option, Create an encrypted file container.
On second step choose Standard TrueCrypt volume.
Select Volume Location on third step.
Choose your desired Encryption Options.
You have to specify enough space for your container.
Choose a good password. A good password is a random combination of upper and lower case letters, numbers and special characters, such as !@#$%^& etc. The minimum length of your password should be 25 characters.
Choose NTFS Filesystem if you are going to store large files in container. Otherwise choose FAT. Before proceeding to the next step move your mouse as randomly as possible within this window to increase the cryptographic strength of the encryption keys.
Click Format button. Wait for the process to finish and click exit.
To use the encrypted container, you have to mount it. Open TrueCrypt, if it is not already opened, click on Select File… button and find mycontainer file. Choose an available Drive letter and click Mount button.
You will be asked for your password! 🙂
After this step, open explorer and you will notice a new Drive under Computer named Local Disk. This is where you store all your sensitive data. When you are done, click Dismount or Dismount All, if you have more than one container, and Exit.
Your data are safe!