A recent email to Securestar produced the following:
I keep hearing that DES encryption is not considered secure yet is one of the encryption options within DriveCrypt 3 and 4. Is this true?
Yes, DES was broken, but there are still some customers who want it. If you want to encrypt a disk or a partition is not necessary to use DES algorithm.
We offer also this encryption algorithms: AES 256, Triple AES, Blowfish, Triple Blowfish, Tea 16, Tea 32, IDEA, Triple DES, Square and Misty 1.
This is very confusing...
Youâ€™ll claim that Drivecrypt has â€œnever been brokenâ€.... which is bold statement... yet you offer, as an optional algorithm, DES which has been broken .... for years. Thus, it is a very real possibility that a customer could purchase this product, use this wide open algorithm (with the unwitting thought that it must be secure if it is offered by such a security conscious organization) only to have it cracked with little budget or effort by even the smallest of organization... thus, donâ€™t look now.... your program has just been compromised or in effect â€œ it has been brokenâ€. Am I missing something?
I would recommend that you not offer it as an option or at the lease have a pop-up window if it is selected to caution your customers as to its complete uselessness in terms of security...
Our program has never been compromised and never been broken.
The standard original DES algorithm has been broken, but not a container of DriveCrypt. Today it is widely common that DES is not safe. we should put a note in the software warning about that. Thank you for your comments.
Can someone explain what they are trying to tell me...specifically...what is the subtle difference between a the â€œcontainerâ€ and the DES encryption that secures itâ€¦or am I all confused?