[IP] more on Can you be compelled to give a password?

To: ip@xxxxxxxxxxxxxx
Subject: [IP] more on Can you be compelled to give a password?
From: David Farber <dave@xxxxxxxxxx>
Date: Sun, 30 Jul 2006 09:26:49 -0400
List-help: <http://v2.listbox.com/doc/help_sub?list_name=ip@v2.listbox.com>
List-id: <ip@xxxxxxxxxxxxxx>
List-software: listbox.com v2.0
List-subscribe: <mailto:subscribe-ip@v2.listbox.com>, <http://v2.listbox.com/subscribe/?listname=ip@v2.listbox.com>
List-unsubscribe: <mailto:unsubscribe-ip@v2.listbox.com>, <http://v2.listbox.com/member/unsubscribe/?listname=ip@v2.listbox.com>
References: <44CC7D7E.5090300@xxxxxxxxxxx>
Reply-to: dave@xxxxxxxxxx



Begin forwarded message:

From: Eric Raible <raible@xxxxxxxxxxx>
Date: July 30, 2006 5:35:58 AM EDT
To: dave@xxxxxxxxxx
Subject: Re: Can you be compelled to give a password?

Dave -

For IP, if you wish.

From: David Farber <dave@xxxxxxxxxx>
Subject: Can you be compelled to give a password? [was: PoliceBlotter:
 Laptop border searches OK'd]
Date: Fri, 28 Jul 2006 14:26:59 -0400
Begin forwarded message:
From: "Patrick W. Gilmore" <patrick@xxxxxxxxx>
Date: July 28, 2006 2:11:45 PM EDT
To: dave@xxxxxxxxxx
Cc: "Patrick W. Gilmore" <patrick@xxxxxxxxx>
Subject: Can you be compelled to give a password? [was: PoliceBlotter: Laptop border searches OK'd]
On Jul 28, 2006, at 1:32 PM, David Farber wrote:
I don't believe it is a crime in any US Federal or State law, orin Canadian law, to set passwords and use encryption. In the US,I believe that a warrant would be necessary for law enforcementto ask for your password, but I don't know if you have tocomply. IANAL.
That is a good question - Can you be compelled to give up apassword? Would you mind posting it to IP, I am interested in theanswer.Seems there might be some 'self-incriminatory' arguments here.Perhaps even an "unreasonable search" argument. But IANAL.

Among many other useful features, the open source TrueCrypt(www.truecrypt.org)supports "plausible deniability". Which means that even if forced toreveal a

password, your actual secret data could remain just that.

From the web page:

Free open-source disk encryption software for Windows XP/2000/2003and Linux* Creates a virtual encrypted disk within a file and mounts itas a real disk.

            * Encrypts an entire hard disk partition or a device.
            * Encryption is automatic, real-time (on-the-fly) and transparent.

* Provides two levels of plausible deniability, in case anadversary forces you to reveal the password:1) Hidden volume (steganography – more information may befound here).2) No TrueCrypt volume can be identified (volumes cannot bedistinguished from random data).* Encryption algorithms: AES-256, Blowfish (448-bit key), CAST5,Serpent, Triple DES, and Twofish.

              Mode of operation: LRW  (CBC supported as legacy).

I've had only good experiences with the windows version, albeit only
with a virtual encrypted disk, and never with whole-disk encryption.

Although possibly relevant to this thread, I also haven't tried either
of the two add-ons: 1) TCGINA, which "allows the use of TrueCrypt to
on-the-fly encrypt a Windows user profile" or 2) CTEMP, which "automates
the process of using TrueCrypt to on-the-fly encrypt the Windows paging
(swap) file, temporary files, and print spooler files".

Full disclosure: my only connection with TrueCrypt is as a satisfieduser.


- Eric Raible


-------------------------------------
You are subscribed as roessler@xxxxxxxxxxxxxxxxxx
To manage your subscription, go to
 http://v2.listbox.com/member/?listname=ip

Archives at: http://www.interesting-people.org/archives/interesting-people/

Prev by Date: [IP] Cingular Analog/TDMA surcharge
Next by Date: [IP] Net Neutrality "Great Debate" MP4 Video Available
Previous by thread: [IP] Cingular Analog/TDMA surcharge
Next by thread: [IP] Net Neutrality "Great Debate" MP4 Video Available
Index(es):
- Date
- Thread