How to encrypt external devices using a cross-platform solution?

13,121

Solution 1

You could also consider installing Truecrypt on your USB. Once installed, use TrueCrypt to create an encrypted container, which can be opened with the software on the key. Saves you time installing software on multiple computers, still leaving you with the encryption you wanted.


Update since 2014, from TrueCrypt site:

WARNING: Using TrueCrypt is not secure as it may contain unfixed security issues

This page exists only to help migrate existing data encrypted by TrueCrypt.
The development of TrueCrypt was ended in 5/2014 after Microsoft terminated support of Windows XP.

Solution 2

I would use EncFS which is available for Linux, OS X and Windows. Advantage is that you can also use it with cloud storage since EncFS encrypts on filesystem level and therefore the changes only affect the files changed not a partition as a whole.

On Linux it's as easy as

encfs ~/Dropbox/encrypted ~/Private

I presume it's similar on Windows but I have only tested it between OSX and Linux so far. You can find a little more info here

On Linux Gnome Encfs Manager is a pretty handy GUI tool to manage EncFS encrypted directories, store passwords in keyring, etc.

sudo add-apt-repository ppa:gencfsm && sudo apt-get update && sudo apt-get -y install gnome-encfs-manager

Solution 3

Truecrypt is probably your best choice, though you'll need to be able to install the software on any computer you want to use.


Update since 2014, from TrueCrypt site:

WARNING: Using TrueCrypt is not secure as it may contain unfixed security issues

This page exists only to help migrate existing data encrypted by TrueCrypt.
The development of TrueCrypt was ended in 5/2014 after Microsoft terminated support of Windows XP.

Solution 4

There is DoxBox:

Open-Source disk encryption for Windows

  • Easy to use, with a 'wizard' for creating new 'DoxBoxes'.
  • Full transparent encryption, DoxBoxes appear as removable disks in Windows Explorer.
  • Explorer mode lets you access DoxBoxes when you don't have admin permissions.
  • Compatible with Linux encryption, Cryptoloop "losetup", dm-crypt, and LUKS. Linux shell scripts support deniable encryption on Linux.
  • Supports smartcards and security tokens.
  • Encrypted DoxBoxes can be a file, a partition, or a whole disk.
  • Opens legacy volumes created with FreeOTFE
  • Runs on Windows Vista onwards (see note below for 64 bit versions).
  • Supports numerous hash (including SHA-512, RIPEMD-320, Tiger) and encryption algorithms (Including AES, Twofish, and Serpent) in several modes (CBC, LRW, and XTS), giving more options than any other disk encryption software.
  • Optional 'key files' let you use a thumb-drive as a key.
  • Portable mode doesn't need to be installed and leaves little trace on 3rd party PCs (administrator rights needed).
  • Deniable encryption protects you from 'rubber hose cryptography'.

After open-source computer program FreeOTFE for on-the-fly disk encryption (OTFE) got discontinued, the DoxBox fork sprung up.


This means that you can encrypt a partition using LUKS (How to encrypt external devices?), and then access it from a Windows machine using DoxBox.

Share:
13,121

Related videos on Youtube

Ondrej Sotolar
Author by

Ondrej Sotolar

Updated on September 17, 2022

Comments

  • Ondrej Sotolar
    Ondrej Sotolar over 1 year

    How can I encrypt an external device (i.e. USB keys, external hard-drives, memory sticks, etc.) so that it would subsequently be readable/writable on any computer that I plug it in?

    For instance, it should then be possible to easily plug the encrypted device on a Linux, Windows, or OS X machine, and be able to access the contents without any fuss.

    How can I do that?

  • landroni
    landroni over 9 years
    Could you provide step-by-step instructions on how to encrypt a partition on Linux, and then decrypt it say on Windows?
  • binaryanomaly
    binaryanomaly over 9 years
    On Linux it's as easy as 'encfs ~/Dropbox/encrypted ~/Private' I presume it's similar on windows but I have only tested it between OSX and Linux so far. You can find a little more info here howtogeek.com/121737/…
  • landroni
    landroni over 9 years
    Could you please edit your answer and include this info? It would be very useful for future users.
  • Flimm
    Flimm almost 8 years
    Veracrypt is considered the successor to Truecrypt.
  • Flimm
    Flimm almost 8 years
    Veracrypt is considered the successor to Truecrypt.
  • Internet User
    Internet User about 5 years
    That site has an SSL Certificate Error. Users notified of this error may be reluctant to load the page.
  • Thi
    Thi almost 5 years
    I'd chance to check the www.kruptos2.co.uk site again, it looks like they have enabled SSL now.
  • Gabriel Staples
    Gabriel Staples almost 5 years
    Nope: still don't. Here's what I see: i.stack.imgur.com/sUve8.png. A security tool that doesn't have a secure website? Not a place I'd venture to go. I'm out.
  • Thi
    Thi about 4 years
    An update, I'd to upgrade kruptos 2 pro to latest version and their site is protected by SSL now.