Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'Create multiple nested secure disk images' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Create multiple nested secure disk images
Authored by: Tidris on Jan 14, '05 01:30:57PM

All one needs to do to break an ordinary encrypted disk image is guess a single password. Given the way most people choose their passwords, the task of correctly guessing them is well within the reach of the average hacker. AES-192 is no more secure than AES-128 if your password is "hello".

The nested disk images force a hacker to guess multiple passwords that need to be applied in the right sequence in order to get to the sensitive data. Also note the hacker doesn't know how many nesting levels / passwords you have used. That uncertainty should be very demoralizing to a hacker and could very well make the hacker quit after just the outermost password has been guessed. This would result in a huge non-linear increase in security due to psychological factors.

If you look at Triple DES, which is considered much more secure than plain DES, you will see that it is similar in principle to what would be achieved by using 3 levels of encrypted disk image nesting.




[ Reply to This | # ]
Create multiple nested secure disk images
Authored by: szabesz on Jan 18, '05 09:55:32AM
just a short comment on this: "Given the way most people choose their passwords"
Anyone trying to protect their files should use good enough passwords in the first place! Why do you suppose that those who take the time to nest their files deep inside encrypted disk images does not take the time to use a good password?
I use only simple AES-128 protected disk images (4380 MB so they fit on a DVD), but with a 16 character long, randomly chosen string as a password. Next step would be to use a few more characters, and.....

ps: never use the AES protected sparseimage format! It gets corrupt in case of a system crash never to be mounted again!

[ Reply to This | # ]