DiskCryptor
DiskCryptor is a free and open-source full disk encryption system for Microsoft Windows.[1][2] It allows for the encryption of a PC's entire hard drive or individual partitions – including the ability to encrypt the partition and disk on which the OS is installed.[3]
 | |
 DiskCryptor main window | |
| Developer(s) | Anonymous ntldr <ntldr(at)diskcryptor.net> |
|---|---|
| Stable release | 1.1.846.118
/ 9 July 2014 |
| Written in | C, Assembly |
| Operating system | |
| Available in | English |
| Type | Disk encryption software |
| License | GNU GPLv3 |
| Website | diskcryptor.org |
DiskCryptor was originally designed to replace commercial disk encryption systems such as DriveCrypt Plus Pack and PGP Whole Disk Encryption, and uses either AES-256, Twofish, Serpent or a combination of cascaded algorithms in XTS mode to carry out encryption.
The project was originally started by a former TrueCrypt user and forum member who goes by the name of 'ntldr' (anonymous). According to the developer, it was originally fully compatible with TrueCrypt's container format as it used a corresponding partition format and encrypted data with AES-256 algorithm in LRW mode. However, according to the software's website, has since improved on the format in order to allow data-in-place encryption on Windows XP, to allow the system partition to have exactly the same format as non-system partitions and to support future project plans.
Since the original TrueCrypt was discontinued and DiskCryptor, as an alternative, has not been updated since 2014, other alternatives have appeared, most notably the source-available project VeraCrypt (based on the original TrueCrypt source code), as well as numerous other commercial and open-source products.
Program features
- Support for encryption algorithm AES, Twofish, Serpent, including their combinations.
- Transparent encryption of disk partitions.
- Full support for dynamic disks.
- Support for disk devices with large sector size (important for hardware RAID operation).
- Performance claimed to be comparable to efficiency of a non-encrypted system.
- Support for hardware AES acceleration:
- AES instruction set on recent Intel and AMD CPUs;
- PadLock extensions on VIA processors.
- Support for the SSD TRIM extension
- Support for hardware AES acceleration:
- Broad choice in configuration of booting an encrypted OS. Support for various multi-boot options.
- Full compatibility with third party boot loaders (LILO, GRUB, etc.).
- Encryption of system and bootable partitions with pre-boot authentication.
- Option to place boot loader on external medium and to authenticate using the key medium.
- Support for key files.
- Full support for external storage devices.
- Option to create encrypted CDs and DVDs.
- Full support for encryption of external USB storage devices.
- Automatic mounting of disk partitions and external storage devices.
- Support for hotkeys and optional command-line interface (CLI).
- Open license GNU GPLv3.
For limitations in the current version, as well as other technical information, see official website.
Hash function
- prf HMAC-SHA-512
Performance
On an Intel Core 2 Quad (Q6600) CPU data encryption speed amounts to 104 MB/s per core.[4] Crypto-algorithms for the x86 version are implemented in assembly language, the implementation having a maximum number of optimizations for the Intel Core line of processors, however it performs sufficiently fast on any other processor as well. Almost all possible enhancements to improve the performance have been applied such as the AES algorithm code is being dynamically generated with optimization made for the usage of a particular key.[4]
Supported OS
| Operating systems | Service pack | Instruction set architecture | |
|---|---|---|---|
| Windows | XP | SP0–SP3 | x86, x64 |
| Server 2003 | SP0–SP2 | x86, x64 | |
| Vista | SP0–SP2 | x86, x64 | |
| Server 2008 | SP0–SP2 | x86, x64 | |
| 7 | SP0–SP1 | x86, x64 | |
| Server 2008 R2 | x64 | ||
| 8, 8.1 | x86, x64 | ||
| Server 2012 | x64 | ||
| 10 | x86, x64 | ||
References
- OTFEDB entry for DiskCryptor v0.2 Archived 11 June 2009 at the Wayback Machine
- Whitepaper: Full-Disk-Encryption Crash-Course – Everything to hide by Jürgen Pabel
- DiskCryptor version history Archived 6 September 2013 at the Wayback Machine
- "DiskCryptor official website: DiskCryptor Wiki, Main Page". Retrieved 30 May 2014.