Secure cloud storage using TrueCrypt

Photo Credit: Wikipedia

Secure cloud storage using TrueCrypt

Panggi Libersa J.A bio photo By Panggi Libersa J.A Comment

Yes, I know that if you visit, there is a warning not to use it anymore.

But many people thought it was weird and they did things to make sure the FOSS encryption tool will still be available for use.

One of them is “Open Crypto Audit Project” with Bruce Schneier as one of its Technical Advisory Board.

The Windows version of the tool had also been audited and from the report we can see the conclusion:

Finally, iSEC found no evidence of backdoors or otherwise intentionally malicious code in the assessed areas. The vulnerabilities described later in this document all appear to be unintentional, introduced as the result of bugs rather than malice.

With that in mind, i still believe that TrueCrypt is in good hands and i’ll keep use it as one of my security tool.

##Client side encryption for your cloud files

I don’t trust any commercial cloud storage on the market for now, and this post is agnostic whether you use Dropbox, Copy or any other cloud storage.

So, basically what we’re trying to do is to create mountable encrypted file container. It’s like having an encrypted hard drive that you can access anywhere. All that cloud storage services know is just encrypted files uploaded to their servers without knowing the content of it.

First thing first, you need to download TrueCrypt from the trusted source. My recommendation is to download the binaries from github that is managed by Open Crypto Audit Project.

After downloaded and installed, you can follow these steps:

  • Open TrueCrypt
  • Click ‘Create Volume
  • Choose ‘Create an encrypted file container’ and click ‘Next
  • Choose ‘Standard TrueCrypt volume’ at the ‘Volume Type’ section and click ‘Next
  • At ‘Volume Location’ section, click ‘Select File’ and choose the directory and file name for your container, you can directly chose the dropbox, copy or other directory to save the file. After done with it, click ‘Next
  • At ‘Encryption Options’ you can chose the ‘Encryption Algorithm’ and ‘Hash Algorithm’, my recommendation for Encryption Algorithm is to use the multiple Algorithm such as Serpent-Twofish-AES. Click ‘Next’ to continue.
  • Now you can configure how big your file is at ‘Volume Size’ section. Click ‘Next’ to continue.
  • Enter the password you like at ‘Volume Password’ section, make sure it’s a strong one. Again, click ‘Next’ to continue.
  • Choose the Filesystem type at ‘Format Options’ section and click ‘Next’ to continue
  • At ‘Cross Platform Support’, in my case choose between ‘I will mount the volume on the other platforms’ or ‘I will mount the volume only on Mac OS X’. Clict ‘Next’ to continue.
  • Move your mouse as randomly as possible and as long as possible to increase the cryptographic strength of the encryption keys. Click ‘Format’ if you think it’s enough for cursor-moving thing.
  • Done! you may exit the wizard.

Now the file is created and your cloud storage service is uploading it to their server.

Storing files to the encrypted container

  • Open TrueCrypt
  • Choose the empty slot of drive.
  • Click ‘Select File’ and choose your newly created file
  • Click ‘Mount’ and enter the password
  • New drive is mounted and you can store your files to that drive and unmount it if it’s done.

Tip for you: Don’t make the file size too big because everytime you modify the content of the container, you have to upload all over again because it will encrypt all the container file and dropbox or copy will think that the file is completely new.