Encryption methods

Encrypted drives are organized as individual container files. Access to these files is password protected. Additionally, DriveLock offers the possibility to reset the password offline.

Encrypted data appears to consist of random letters and numbers. File and directory names are also encrypted within an encrypted drive, as is free space. The encryption method defines the way in which data is encrypted on the respective drive.

On current systems, encryption and decryption are performed by encryption methods implemented in Open SSL:

• AES (Advanced Encryption Standard) is recommended

• You can also select other encryption algorithms in the DriveLock dialogs: Triple DES, Blowfish, Twofish, CAST 5 and Serpent.

DriveLock applies a hash algorithm to encrypt the password that is used to encrypt or decrypt the encrypted drive. DriveLock supports the following hash algorithms:

• SHA-256 and SHA -512 are recommended (both also as FIPS version)

• Additional hash algorithms are available in the DriveLock dialogs: RIPEMD-160 and WHIRLPOOL