I just found out about this about half an hour ago. Color me VERY disappointed.
So Truecrypt, up until now the leading way for private citizens to do full disk and file encryption, underwent a full two-part security code audit and a now a Google Project Zero audit, just failed. Big time. Continue reading Oh, TrueCrypt! How You Have Let Me Down…
So we security professionals have been railing against the idea of the FBI/CIA/NSA/Other 3-and-4-letter agencies having mandated “back doors” into private encryption systems. In fact, FBI Director James Comey has been fighting to get this legislated for years, now. This, despite the fact that the Crypto Wars of the 1990s failed to mandate back doors into encryption systems – and for a very damn good reason.
But these days, another “backdoor” has resulted in what we feared: giving widespread access to those who should never have it.
Continue reading This is Why Back Doors Are Bad…Bad TSA! Very Bad TSA!