Buy Software, Shadowcom.dk
This is a Produckt that i have test, it is a real good produck and to work whit it is so easy that you probely will like it from the start, it easy to setup, its easy to use, its easy to run, and its a good securety produck. but read about it, if you want to secure you computer/server and data.
DriveCrypt 4.20 - 1344Bit Hard Disk Encryption
1344 Bit Military Strength hard
disk encryption
DRIVECRYPT securely and easily protects all proprietary data on notebooks and desktop computers 100% of the time without users having to think about security. Any organization, from a small company to a large international firm with thousands of users in the field, can effectively protect business plans, client lists, product specifications, confidential corporate memos, stock information, and much more with this product.
How DriveCrypt`s On-the-fly
Encryption Works
As data is read from the hard disk, DRIVECRYPT automatically decrypts the data
before it is loaded into memory. When data is written back to the hard disk, it
is automatically re-encrypted. The encryption/ decryption process is completely
transparent to the user or any application program -the data is caught "on the
fly" as it transfers back and forth between the hard disk and memory.
Consequently, users don't need to remember to decrypt or re-encrypt their data,
or change the normal operation of the PC. In addition, only individual files are
decrypted at any one time, not the whole hard disk.
DriveCrypt Key Features :
1. Strong Cryptography
1344 Bit Military Strength disk encryption using the best and most
proven cryptographic algorithms such as AES, Blowfish, Tea 16, Tea 32, Des,
Triple Des, Misty 1 and Square.
2. Easy to Install, Deploy & Use
DRIVECRYPT requires minimal administration and user training.
It is completely transparent, requiring no change in the way users work with the
computer.
3. Maximize Your Security, Minimize Your Risk
DRIVECRYPT protects your data with very fast and a true "on the fly"
encryption process. Other products that claim to be "on the fly" decrypt an
entire file and load it into memory, creating significant security risks.
DriveCrypt is smarter and more secure because it decrypts only the specific
portion of a file that is in use. Unprotected data never resides on a DriveCrypt
encrypted hard drive.
4. Disk Partition and file volume encryption
(Partition encryption with DriveCrypt standard edition only)
DRIVECRYPT allows both, the encryption of an entire Hard Disk
partition, as well as the creation of a virtual container file that will store
all the encrypted information.
5. Invisible Containers
(DriveCrypt standard edition only)
The DriveCrypt Standard edition has the ability to create an INVISIBLE
disk INSIDE a container or partition. This way you define two passwords for a
container. The invisible disks password gives you access to your working disk,
which is hidden in the unused area of your "outer" disk, while another password
gives you access to the pre-setup DriveCrypt volume in which you only store data
that you would want others to believe is the only data in the container or
partition. This is very useful in cases where an aggressor may force you to
reveal the DriveCrypt disk's password: By revealing the password of the first or
"outer" disk, the aggressor will ONLY see the "prepared data": IE data you put
in there, before creating the hidden disk, while he will not be able to see or
get evidence that there is another invisible container that securely stores
confidential data on the disk.
6. Hide data into music files (Steganography)
Using special so called "Steganographic" functionalities, DRIVECRYPT
allows you to hide all your sensitive information into music files. Just
authorized users will be able to access secret information, anyone else will
only find harmless music on the computer…
Steganography
DRIVECRYPT uses advanced
steganography to hide your confidential information into music files.
Steganography is the art and science of communicating
in a way which hides the existence of the communication. In contrast to
cryptography, where the "enemy" is allowed to detect, intercept and modify
messages without being able to violate certain security premises guaranteed by a
cryptosystem, the goal of steganography is to hide messages inside other
"harmless" messages in a way that does not allow any "enemy" to even detect that
there is a second secret message present. Steganography is in the (especially
military) literature also referred to as transmission security or short TRANSEC.
A good steganography system should fulfil the same requirements posed by the "Kerckhoff principle" in cryptography. This means that the security of the system has to be based on the assumption that the "enemy" has full knowledge of the design and implementation details of the steganographic system. The only missing information for the "enemy" is a short easily exchangeable random number sequence, the secret key, and without the secret key, the "enemy" should not have the slightest chance of even becoming suspicious that on an observed communication channel hidden communication might take place.
DRIVECRYPT is able to hide entire volumes in music files using advanced steganographic techniques. There are a number of simple software tools available for hiding files in the least significant bits of digital images or for transforming PGP messages into files resembling pure random byte sequences. However usage of most of the currently available steganographic tools might be quite easily detected using sufficiently careful analysis of the transmitted data.
If you want to test DRIVECRYPT`s
advanced Steganography, please create a 16 bit, stereo audio file. (An easy way
to do this is by downloading the program "WinDAC" from our Download Section.
This program allows you to transform any song from any audio CD to a
Steganographic-suitable wav file).
Then tell DRIVECRYPT to create an encrypted disk in the music
file (by choosing the option "Use Cryptographic Functionalities" on the disk
creation wizard.
The resulting music (WAV) file, created by DRIVECRYPT, will become a "virtual container" for the storage of confidential data, just as if it were a normal hard disk. For unauthorized users, however, the file will appear to be just a simple music file.
DRIVECRYPT is the most
powerful, flexible and fast cryptographic program available on the market today,
bringing Military Strength Encryption to your computer and protecting your data
transparently in a quick, reliable way.
7. Improved Password Security
DRIVECRYPT allows administrators to configure several password
settings:
- Master Password Settings
- Restricted second user Passwords
- Second user Password Expiration
- Console Lock-Out Password
8. Password Sniffing Protection
DRIVECRYPT integrates special functionalities that prevent passwords
from being sniffed by Hackers or Trojan horses such as Back Orifice, SubSeven
etc...
9. No-Evidence Encryption
DRIVECRYPT container files do not have any file header that indicates
it is a DriveCrypt encrypted file. Therefore, without knowing the right
passphrase, it is impossible to prove that a large container file on the
computer is a DriveCrypt virtual disk container.
10. Administrator Password Control (keyfiles)
DRIVECRYPT allows system Administrators to assign different passwords
to different users.
11. Anti Dictionary or Brute Force Attack mechanism
DRIVECRYPT makes Dictionary or Brute Force attacks against encrypted
volumes much harder than any of the actual competitor products by dramatically
slowing down these processes.
12. Easy and fast hotkey control
DRIVECRYPT allows the most used commands like mount or dismount
encrypted volumes… to be rapidly accessed trough Hotkeys and/or the toolbar.
13. Second User Access
DRIVECRYPT allows the creation of a master password, as well as
different lower rights second user passwords (keyfiles).
14. Forgotten user password recovery
DRIVECRYPT allows administrators using the master password, to access
an encrypted disk even if the user has forgotten his user password. This ensures
that a company can restore a user password if forgotten. DriveCrypt prevents
loss of valuable data from user's workstations and notebooks by allowing three
methods of encrypted data access: the Master Password, the user password
(keyfile) and/or hardware device access such as optional fingerprint-/Smartcard
Readers or USB Token devices.
15. Eliminate the Danger Of Unattended Computers
DRIVECRYPT provides an automatic and/or manual lock-out feature that
locks out the user's console and displays a password-protected screen saver.
This lock-out functionality can be activated manually or automatically after a
specified period of computer inactivity. The computer remains secure even when
left unattended. To restore the screen and unlock the keyboard, the password for
the current user or Master Password must be entered.
16. Secure Disk Deletion (Disk Wiping)
DRIVECRYPT allows you to wipe the free space on a disk.
This ensures that deleted files will never be recovered by special disk tools.
17. Encrypted Volume Resizing (DriveCrypt Standard edition)
An Encrypted Volume may, with time, become too small or too big, for
the amount of data it has to contain. Therefore, DriveCrypt offers you a
Volume-Resize functionality. This will allow you to easily adapt a volume to
your needs at any time, and optimise the Hard Disk space.
18. External Hardware Support
DRIVECRYPT supports optional external hardware devices such as:
Fingerprint and Smartcard reader, as well as USB token.
19. Works on any Storage Medium
DRIVECRYPT works on any kind of Hard Disk, and removable medium such as
Floppy-, Zip-, Jazz-, Sygate-, CD-Rom, DVD- Drives etc…
and manages up to 16 TERABITE of encrypted data (Standard edition)
or 4 GB (Home Edition)
20. Installation is Easy and Safe
The installation is easy and fast. During installation, the
administrator simply selects the drives to be encrypted, the encryption method
he would like to use and the master password. DRIVECRYPT will then make the rest
and crypt the selected disks.
21. Encrypted Data is Easily Recovered
If a user leaves the organization, the encrypted data on the PC is
easily recovered and restored to a decrypted state by the administrator using
the Master Password or the Local Administrator Password.
22. No Backdoors present
DriveCrypt does NOT include any backdoor. Encrypted data are only
accessible by the legitimate users. Neither the vendor nor any other entities
are able to break the DriveCrypt encryption. See the FAQ for more details.
System Requirements : DRIVECRYPT works on the following operating Systems: Windows95/98/ME/NT/2000/XP
DriveCrypt Plus Pack
Encrypts the whole operating system
- Full Disk Encryption (Encrypts parts or 100% of your
HardDisk including the operating System)
- Pre-Boot authentication (BEFORE the machines boots, a password is requested to
decrypt the disk and start your machine)
- Allows secure hiding of an entire operating system inside the free space of
another operating system.
- Strong 256bit AES encryption
- USB-Token authentication at pre-boot level
DriveCrypt Plus Pack provides true real-time "on the fly" 256-bit disk encryption. Providing advanced FDE (Full disk encryption) as opposed to VDE (Virtual disk encryption) or "container" encryption, DCPP is an important evolutionary step in the field of transparent data protection.
DCPP allows you to secure your disk(s) (including removable media) with a powerful and proven encryption algorithm (AES-256) at the sector level, ensuring that only authorized users may access it. The encryption algorithm used by DCPP is a trusted, validated algorithm chosen by the National Institute of Standards and Technology (NIST) and stated to be the cryptographic standard for years to come. AES-256 is a FIPS-approved symmetric encryption algorithm that may be used by U.S. Government organizations (and others) to protect sensitive information.
DCPP is automatic and completely transparent to the user. Not only does this decrease user involvement and training requirements, but also it creates the foundation for enforceable security. The careful integration of boot protection and automatic encryption provides a high degree of security with minimal impact on users. Boot protection prevents subversion of the operating system (via floppy boot-up, for example) or the introduction of rogue programs while sector by sector encryption makes it impossible to copy individual files for brute force attacks. DCPP safeguards the operating system and the important system files (which often contain clues to passwords for Windows).
DCPP is the fastest and most feature-rich real-time encryption system available, Special care has been taken to render all cryptographic parts as invisible & transparent as possible.
Pre-Boot Authentication
The user is authenticated by means of pre-boot authentication (PBA) before the
system is started and therefore before the operating system is booted. This kind
of authentication cannot be manipulated, PBA therefore guarantees maximum
security. Neither keys nor passwords are stored on the PC's hard disk. All of
the information required to boot the operating system is derived from the
password. This makes the use of hard disk tools for analysing the hard disk
completely ineffective. PBA in provided by a system call BootAuth and is a fully
graphical login screen.
Full Disk Encryption
Automatic & transparent Full Disk Encryption (FDE) offers several key advantages
relative to file encryption. FDE secures the system and temp files that often
contain sensitive data but are missed by file encryption. Even removing the
drive itself does not give access to any file or directory structure. FDE is
performed sector by sector without creating temp or backup files: As a result,
large files will decrypt without delay whereas file encryption is normally much
slower. FDE also avoids such time consuming tasks as secure deletes of temp
files or work files in clear text, and obviates the need to do a full delete on
disks to be discarded.
How does it work ?
As data is read from the hard disk, DCPP automatically decrypts the data before
it is loaded into memory. When data is written back to the hard disk, it is
automatically re-encrypted. This process is completely transparent to the user
or any application programs, the data is caught "on the fly" as it transfers
back and forth between the hard disk and memory. Consequently, users don't need
to remember to decrypt or re-encrypt their data, or change the normal operation
of their PC. In addition, only individual sectors are decrypted at any one time,
not the whole hard disk. Other products that claim to be "on the fly" decrypt an
entire file and load it into memory, creating significant security risks. DCPP
is smarter and more secure because it decrypts only the specific sectors of a
file that are in use. Unprotected data never resides on a DCPP encrypted disk.
Hidden Operating System:
DCPP is the only software on the market, able to hide an entire operating system
inside the free disk space of another operating system. You can practically
define two passwords for your DCPP encrypted disk: One password is for the
visible operating system, the other for the invisible one. The first "fake"
password gives you access to a pre-configured operating system (outer OS), while
the other gives you access to your real working operating system. This
functionality is extremely useful if you fear that someone may force you to
provide the DCPP password; in this case, you simply give away the first (fake)
password so that your attacker will be able to boot your system, but only see
the prepared information that you want him to find. The attacker will not be
able to see any confidential and personal data and he will also not be able to
understand that the machine is storing one more hidden operating system. On the
other hand, if you enter your private password (for the invisible disk), your
system will boot a different operating system (your working system) giving you
the access to all your confidential data.
The creation of a hidden operating system is not obligatory and as such, it is
not possible for anyone who does not have the hidden OS password to know or find
out, if a hidden operating system exists or not.
Features and Benefits
Some of the main features & benefits:
· Boot protection
· Pre-Boot authentication: Login before starting the operating system
· Multiple OS boot support (Microsoft)
· Invisible operating system (allows hiding the entire operating system
· Full or partial hard disk encryption
· Sector level protection
· Complete "power off" protection i.e. unauthorised users are prohibited from
starting up the PC
· AES 256 bit encryption
· No size limitation for encrypted disks
· Manages an unlimited amount of encrypted disks simultaneously.
· Allows steganography to hide data into pictures
· Trojan and keyboard sniffer protection preventing passwords from being sniffed
/ captured (red screen modus).
· Anti dictionary and brute-force attack mechanisms (due to the nature of DCPP,
it is the most difficult system to attack compared to anything else available.)
· Encrypts almost any kind of media (hard disks, floppy disks, ZIP, JAZ, etc...)
· Administrator /user specific rights
· USB-Token authentication at pre-boot level (Aladdin R2 and Rainbow USB-Token)
· Facility to validate the integrity of the encryption method.
· Recovery disk for "disaster recovery"
· Easy to install, deploy and use.
· Completely transparent to the user
· Minimal administration and user training.
Note:
DCPP currently works only on Windows NT /2000 and XP
The operating systems 95 /98 and ME are NOT yet supported