Truecrypt and swap

Hello!

I've got Ubuntu 14.04 Desktop and I use Truecrypt to store my confidential files. I've read that since Truecrypt does on the fly encryption, it only stores its decrypted content (and user's password and his keyfile I would think?) in RAM. If it's all true, then does that mean that even if I don't encrypt my swap, there's no risk that my data stored in a Truecrypt container (and my password and a keyfile too?) would end up on a swap partition in an unencrypted form?
Member_2_7970041Asked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
robocatConnect With a Mentor Commented:
The chances are low but this is not impossible.

If you bother to use Truecrypt, you should also encrypt swap .  Better yet, encrypt the entire OS if you're really security conscious, because you never know that parts of your confidential files get copied as a temp file.
0
 
EirmanChief Operations ManagerCommented:
If you are concerned about the security of your encrypted data, now and especially in the future,
you should consider TrueCrypt's successor VeraCrypt

Truecrypt is no longer being supported or developed.
I believe that it still quite secure, but who knows what the future may bring!

From the VeraCrypt website .....
VeraCrypt is a free disk encryption software brought to you by IDRIX that is based on
TrueCrypt 7.1a. - It's free and open-source.

==============================================================
To answer your specific truecrypt question, your password/encryption keys
are never stored in the swapfile.
Anyhow, once you choose volume encryption, everything on your OS disk
including temp files and the swapfile are automatically encrypted, unless you have
deliberately moved your swapfile to another disk/partition other than that of your OS.
0
 
Rich RumbleSecurity SamuraiCommented:
If the whole system is encrypted then you don't have to worry about anything from RAM being written to Swap in plain-text. https://veracrypt.codeplex.com/wikipage?title=System%20Encryption
However if your swap partition is not encrypted, it is possible for your keys to be written there in any OS. I've read both phases of the Audit on the original TC, nothing about SWAP really came up, so I think the chance is remote as stated, but still possible.
-rich
0
Easily Design & Build Your Next Website

Squarespace’s all-in-one platform gives you everything you need to express yourself creatively online, whether it is with a domain, website, or online store. Get started with your free trial today, and when ready, take 10% off your first purchase with offer code 'EXPERTS'.

 
EirmanChief Operations ManagerCommented:
Thanks for ignoring my comment
0
 
Member_2_7970041Author Commented:
Eirman,
I didn't ignore your comment. I read it and thanks for sharing the info you have. Nevertheless, it's my prerogative to grant the best answer to anyone who's been participating in this thread. And I'm under no obligation to inquire more about the subject.

I decided not to encrypt my swap or any other parts of Ubuntu. Question is closed. Thank you!
0
 
EirmanChief Operations ManagerCommented:
I read it and thanks for sharing the info
A little acknowledgement was all that I was looking for (not points) - Thank you.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.