I have recently come to the conclusion that all personal information that I store/produce needs to be encrypted. I've scoured the internet and found hundreds of programs offering the security that I wish to have. My budget for this project is nearly zero, although I've considered shelling out the $100 for PGP whole disk encryption software. I then stumbled upon a program called Truecrypt. It seemed to offer all the features that I wanted, at no cost. I have been testing it out for about a week. I've come up with a system that seems pretty secure... but some feedback would be appreciated.
Truecrypt offers the ability to encrypt chunks of data on my hard drive using either a password (which I didn't feel was secure enough) or a key file... which is simply a file that acts as a key to de crypt data ( an mp3 for example, file must next change!).
After shredding all unnecessary information with the free PHP shredder, I proceeded to create my encrypted chunk of space. I booted in safe mode and ensured only essential programs were running with no internet connection. I through all my files in, encrypted and then shredded the free space.
After all that, I booted again into normal mode(I'm an xp user BTW) and shredded free space again... back up all encrypted data onto a NAS and USB drive.
I used a keyfile publicly available on the internet incase I loose my original (I hope it never changes) and I make sure never to access the data in an unsecure environment.
Anyone got any tips on how I can improve the process? I know there are wholes but I think that my paranoia is blinding me. Any feedback would be much appreciated. Thanks ahead of time!
** TRUST NO ONE **