Developer of VeraCrypt encryption software says Windows users may face boot-up issues after Microsoft locked his account | TechCrunch
techcrunch.com
The maker of the popular open source file encryption software VeraCrypt said Microsoft locked his online account, which may prevent device owners from booting up their computers.
  • yesman@lemmy.worldEnglish
    108·
    3 days ago

    I’ve never trusted full disk encryption because I understand the person most likely to get locked out of my data is me.

    I can see the use case for laptops, but my security policy is “if you have physical access, you win”.

      • Hanrahan@slrpnk.netEnglish
        12·
        2 days ago

        yes, and then i forget the encryption password as i don’t use the laptops that much these days and now have it written on the lid

        kidding :) or am I :(

    • peacefulpixel@lemmy.worldEnglish
      20·
      3 days ago

      well i suppose it depends on how deep your personal security goes. are your passwords stored on your device? are they stored securely? do you have a password manager? do you have a standalone app for your password manager and not a browser extension? is the master password for your password manager stored on any of your devices? do you have any settings that automatically locks your PC upon inactivity? is the pin for your PC related to you personally in any way? i get what you’re saying because at the end of the day physical access IS pretty hard to mitigate. but you’d be surprised how far simple steps can take you.

    • Appoxo@lemmy.dbzer0.comEnglish
      1·
      2 days ago

      At best a virtual rncrypted disk on the unencrypted drive.
      If you (not you OP) are doing that secretive work, maybe you shouldnt do that on this OS and instead on Tails or other temporary distros

  • krigo666@lemmy.worldEnglish
    22·
    3 days ago

    And this why Secure Boot can’t be trusted. It is Micro$lop that signs and issues the keys.

    • 9tr6gyp3@lemmy.worldEnglish
      14·
      3 days ago

      You can use custom keys with secure boot. Any PC newer than 2015 should give you that option.

      You don’t have to use Microsoft’s keys.

      This isn’t a secure boot issue. This is a bootloader issue.

  • Brkdncr@lemmy.worldEnglish
    21·
    3 days ago

    I’m not sure what the problem is. His account is locked, but it’s not like he can’t still sign code and distribute it even if that means using a new account.

    Edit: other articles point out that his company failed certification, and he’s not been able to reach support to find out why.

    • Voroxpete@sh.itjust.worksEnglish
      7·
      2 days ago

      The answer to your question was in the article;

      Because Microsoft requires developer accounts like his to re-verify the security of their software, Idrassi said that many devices running VeraCrypt will soon be unable to boot if the issue is not resolved.

  • Optional@lemmy.worldEnglish
    21·
    3 days ago

    In Idrassi’s case, he said he is able to push new updates to Linux and macOS users unhindered, but the majority of his users that run Windows cannot currently receive updates.

    So, no problem then.