For example, when the system partition is encrypted, TrueCrypt uses PBKDF2-RIPEMD160 with 1000 iterations whereas in VeraCrypt we use 327661. And for standard containers and other partitions, TrueCrypt uses at most 2000 iterations but VeraCrypt uses 655331 for RIPEMD160 and 500000 iterations for SHA-2 and Whirlpool.

This enhanced security adds some delay only to the opening of encrypted partitions without any performance impact to the application use phase. This is acceptable to the legitimate owner but it makes it much more harder for an attacker to gain access to the encrypted data.

VeraCrypt storage format is INCOMPATIBLE with TrueCrypt storage format.

What's New:

All OSs

  • Add support for mounting TrueCrypt volumes.
  • Add support for converting TrueCrypt containers and non-system partitions.
  • Add support for SHA-256 for volume encryption.
  • Make SHA-512 the default key derivation algorithm and change the order of preference of derivation algorithms : SHA-512 -> Whirlpool -> SHA-256 -> RIPEMD160
  • Deprecate RIPEMD160 for non-system encryption.
  • Speedup mount operation by enabling choice of correct hash algorithm.
  • Display a wait dialog during lengthy operations to avoid freezing the GUI.
  • Implement creation of multiple keyfiles at once, with predefined or random size.
  • Always display random gathering dialog before performing sensitive operations.
  • Links in the application now points to the online resources on Codeplex
  • First version of proper VeraCrypt User Guide

MacOSX

  • Implement support for hard drives with a large sector size (> 512).
  • Link against new wxWidgets version 3.0.2
  • Solve truncated text in some Wizard windows.

Linux

  • Add support of NTFS formatting of volumes.
  • Correct issue on opening of the user guide PDF
  • Better support for hard drives with a large sector size (> 512).
  • Link against new wxWidgets version 3.0.2

Windows

  • Security: fix vulnerability in bootloader detected by Open Crypto Audit and make it more robust.
  • Add support for SHA-256 in system boot encryption.
  • Various optimizations in bootloader.
  • Complete fix of ShellExecute security issue.
  • Kernel driver: check that the password length received from bootloader is less or equal to 64.
  • Correct a random crash when clicking the link for more information on keyfiles
  • Implement option to auto-dismount when user session is locked
  • Add self-test vectors for SHA-256
  • Modern look-and-feel by enabling visual styles.
  • Few minor fixed.