Review: Drivecrypt Plus Pack v3.95, full disk encryption

Some people out there are antagonistic to encryption software that is not open source and can not be reviewed for backdoors. Drivecrypt Plus Pack is one such proprietary encryption product.

There maybe some reason why you may want to use it, for example some special feature of compatibility issues. I decided to download Drivecrypt Plus Pack after Truecrypt 6.1a started to give me problems at boot up time.

DriveCrypt Plus Pack full disk encryption has very few things in common with Truecrypt in relation to usability and functions, if you are a former Truecrypt user you will need to read the DCPP manual to understand some terms and features not present in Truecrypt.

DriveCrypt Plus Pack v3.94 Install

DriveCrypt Plus Pack v3.94 Install

DriveCrypt Plus Pack allows you to secure your disk, including removable media, with a powerful and proven encryption algorithm (AES-256), AES-256 is a FIPS approved symmetric encryption algorithm.

DriveCrypt Plus Pack main features:

– Full disk encryption, encrypts 100% of your hard disk including the operating system.

– Pre-boot authentication, before the machines boots a password is requested to decrypt the disk and start your machine.

– It can create an encrypted hidden operating system which existence can be denied, this is useful if you are ever forced to give out your password.

– Strong 256bit AES encryption

– Optional USB-Token authentication at pre-boot level

Before you start encrypting your disk you must install what DCPP calls BootAuth, this is the Master Boot Record, if you attempt to encrypt the disk without BootAuth you will be stopped and a message will warn you.

The Good Stuff

Once you are registered with Securstar website you will have access to video tutorials online about how to use DriveCrypt Plus Pack.

DCPP allows the use of a USB key as a password, but if you think that the Stasi or any other repressive government agency can raid your home, you will be better off memorasing your passphrase.

Drivecrypt Plus Pack has specific administator/user rights, ideal for corporations and multiuser computers.

The master password to access the encryption keys held in your keystore can be hidden in pictures (.bmp) or sounds (.wav) using steganography.

You can set up a logon password that when entered will destroy the BootAuth, deleting the bootloader and making the disk unbootable. To use this against a repressive regime avoiding being accussed of obstruction to justice you can write the destruction password down next to your computer with the word “password” on it, and the Stasi will enter it for you in their computer forensics laboratory, destroying the bootloader themselves.

DriveCrypt Plus Pack comes with various BootAuth, this is how DCPP names the logon screen, one of them consists of a black BootAuth with the message “Hard disk failure”. It will not fool a computer forensics expert but can be optimal to fool your noisy flatmate.

DriveCrypt Plus Pack manual also explains how you can create your own customized logon screen with an image editor.

Securstar, the company selling Drivecrypt Plus Pack, accepts payments by check, Paypal, credit card or bank transfer. There is a Windows Vista 64 bit version available as well as the most widely used 32 bit.

You can test the integrity of the encryption method with a small utility included in Drive Crypt Plus Pack.

You can assign a hotkey to lock your computer if you have to go away from your computer for a few moments, this will activate a password protected screensaver.

If you have any problem or query Securstar provides support via email.

DriveCrypt Plus Pack Keystorage

DriveCrypt Plus Pack Keystorage

The Bad Stuff

The software is propietary, nobody can access the source code and it only works in Windows.

Drive Crypt Plus Pack help file and instuctions are poor and not detailed enough,  the Red Screen and BootAuth destruction features in particular are poorly documented.

Their official online support team, although replying quickly, in my experience, are not too knowledgeable of the product.

Raid and dynamic disks are not supported, normally this should not be a problem for home users, only for businesses, it may still work but Securstar does not support it.

You can not use the non hidden operating system normally, only have it created in case you are forced to reveal the password.

A computer forensics investigator will be able to find out the last time you accessed that non hidden operating sytem by looking at the file timestamps.

Notice that Truecrypt hidden operating system feature also has the same problem, as the predicament arises from Windows itself,  download Mr. Bruce Schneir Defeating Deniable Encrypted File Systems research paper for more info on this.

You will need internet access to register the software.

Conclusion

Assuming you trust closed source full disk encryption software DriveCrypt will be a great choice. Unlike other similar commercial software like PGP whole disk encryption, DCPP has some features ideal for home users.

Some examples are: Creating an operating system which existance can not be proved, capability to destroy BootAuth entering a determined password to make the disk unbootable, use of steganography to hide your encryption keys inside a picture or sound file, realistic hard disk failure logon black screen and the possibility of creating your own preboot screen with a simple photo editor.

Truecrypt vs. DriveCrypt Plus Pack:

DriveCrypt Plus Pack is a commercial venture and can not compete in price against Truecrypt, which is free.

Truecrypt source code can be checked for backdoors and reliability (although to the best of my knowledge nobody qualified has looked into its source code yet and said it is safe).

DriveCrypt Plus Pack has a support team that will help you in case of problems, Truecrypt has not.

DriveCrypt Plus Pack has some extra features like customizing of boot up screen, hiding of encryption keys for the keystore through steganography and USB authentication token support.

Truecrypt works in Linux as well as Windows, if you encrypt an external hard disk with Truecrypt in Windows you can then open that encrypted disk with your Linux computer.

DriveCrypt Plus Pack does not force you to burn a CD before you install the software, this is my greatest grunge against Truecrypt developers. See my work around to install Truecrypt on a computer without CD drive if you want to install Truecrypt on your netbook.

Truecrypt instructions manual is first rate, and I think everyone should read it even if they do not use Truecrypt. Not only it contains help about their product but it also explains how you should tweak Windows to avoid data leaks. Truecrypt also has a wider choice of encryption algorythms than DriveCrypt Plus Pack, but DCPP AES256 is considered a standard and this is the one I would use with any encryption program.

DriveCrypt Plus Pack BootAuth in hidden mode

DriveCrypt Plus Pack BootAuth in hidden mode

PS:

Whole disk encryption booting up problem solved!

I have experienced this with Truecrypt and DriveCrypt Plus Pack, this is not a software issue, it can happen with ANY whole disk encryption program.

Your computer hard disk will spin non stop and you will see this message on the screen while booting up your computer:

>Verifying DMI pool data…
>Boot from CD:
>Disk boot failure, insert system disk and press enter

This is a BIOS problem, as far as I know there is no easy solution other than getting into the BIOS and disabling the booting from CD option, you should be able to do this on any modern BIOS. If you then one day need to boot from a CD-Rom you will need to enable this option again.