Contents
Can you use TrueCrypt on a dual boot system?
The Vera/Truecrypt system volume encryption wizard (under Windows, it isn’t available under Linux) claims not to support system volume encryption on systems with more than one bootloader Vera/Truecrypt are the potential solutions I’ve found, but if there are better ones I am happy to learn
Is it best practice to use Preboot authentication?
The NIST white paper on Endpoint Encryption states that it is a best practice to use preboot authentication. IMPORTANT: The available DE Autoboot feature is an account that effectively bypasses the protection provided by DE, and the user does not see the preboot authentication screen.
Can you use TrueCrypt with BIOS / UEFI?
Hardware encryption using BIOS/UEFI is not acceptable as I don’t want to risk losing data if my motherboard dies The Vera/Truecrypt system volume encryption wizard (under Windows, it isn’t available under Linux) claims not to support system volume encryption on systems with more than one bootloader
How to choose a full disk encryption solution?
Full disk encryption provides a pervasive layer of encryption across an entire storage device, be it a spinning hard disk or solid state drive (SSD). How to choose a full disk encryption solution Operating System: Microsoft and Apple both have their own default full disk encryption systems that might be sufficient for some use cases.
Is there a way to dual boot Linux on Windows?
Encrypt Windows with TrueCrypt. Boot into Windows and encrypt the system partition with TrueCrypt. This will install the TrueCrypt bootloader to the master boot record of the drive, overwriting Grub. Since TrueCrypt knows nothing about dual-booting, your Linux install should no longer be reachable.
Is there a way to encrypt a Linux boot partition?
However, you can encrypt your Grub boot partition and embedded a crypto key into the initramfs for Linux and LUKS (GRUB early crypto disk feature [1]). You could probably implement a similar solution for grub & VeraCrypt & Windows, e.g., grub loads a crypto key file from the encrypted boot partition into memory and VeraCrypt using it later.
Is there a way to dual boot with Grub?
With Linux and encryption, dual-boot aside, the /bootpartition is unencrypted and Grub is configured to know that the other partition is encrypted with dm-crypt/LUKS, which, in this setup, contains within it a partition managed by LVM.