Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - brian163

#1
While I agree with your point about portable data/removable devices, I was focused on my particular test scenario where I have two external storage arrays attached "permanently" (without intent of being regularly disconnected) to a desktop tower. I understand that may not be the case for many of your customers and I appreciate you taking the time to provide the details of the steps I can use to do it myself.

If you did implement something like this in the future, I'm guessing the simplest way to handle this would be to have Espionage offer the option to create fake disks on any mounted volume at the time the wizard is run. So at initial launch you would get a dialog like:

Select the volumes on which you want to create PD images:
X Volume1
X Volume2
O Volume3

And as you said it would take some knowledge on behalf of the user to choose appropriately, select the location on each volume for the Data folder, etc. (Perhaps this could be handled by requiring the user to select an advanced option dialog before see the options.)

Of course that only handles the scenario where all of the volumes you want to include are mounted at the time you first run Espionage. The fact that may not always end up being the case is what lead me to suggest allowing the wizard to be run on demand. But I can see how that would add complexity as you would probably want to identify/recognize which volumes already have PD images on them in presenting that dialog to the user, etc.

The truth is I have a very limited need for encryption myself. But as a security professional and Mac fan seeking out alternatives to TrueCrypt, I was intrigued by the considerations you had for the value of PD and incorporated into your product. Kudos!  8)
#2
I downloaded the trial of Espionage 3.6 and have been becoming familiar with it. With several different internal/external volumes mounted on my Mac, one of the things I successfully tested is saving the data file (sparsebundle) of a folder on an external volume to the same external volume. However, something that stands out to me is that I feel this may somewhat undermine the value of the plausible deniability feature. Unlike in the default ~/Library/Application Support/com.taoeffect.Espionage3/Data folder, there are no "fake" sparsebundle files in these other data file locations. I considered copying the ones the wizard process created at first launch to this location. However, that strikes me as problematic as well as I believe the duplication would undermine the intent of the randomness of these fake files.

Is there anyway you could add a preferences option that would allow a user to use the same wizard process/interface to generate additional fake sparsebundles in other data file locations?