VeraCrypt adds enhanced security to the algorithms used for system and partitions encryption making it immune to new developments in brute-force attacks.
VeraCrypt also solves many vulnerabilities and security issues found in TrueCrypt.

Features

  • Creates a virtual encrypted disk within a file and mounts it as a real disk.
  • Encrypts an entire partition or storage device such as USB flash drive or hard drive.
  • Encrypts a partition or drive where Windows is installed (pre-boot authentication).
  • Encryption is automatic, real-time(on-the-fly) and transparent.
  • Parallelization and pipelining allow data to be read and written as fast as if the drive was not encrypted.
  • Encryption can be hardware-accelerated on modern processors.
  • Provides plausible deniability, in case an adversary forces you to reveal the password: Hidden volume (steganography) and hidden operating system.

VeraCrypt adds enhanced security to the algorithms used for system and partitions encryption making it immune to new developments in brute-force attacks. For example, when the system partition is encrypted, TrueCrypt uses PBKDF2-RIPEMD160 with 1000 iterations whereas in VeraCrypt we use 327661. And for standard containers and other partitions, TrueCrypt uses at most 2000 iterations but VeraCrypt uses 655331 for RIPEMD160 and 500000 iterations for SHA-2 and Whirlpool.

This enhanced security adds some delay only to the opening of encrypted partitions without any performance impact to the application use phase. This is acceptable to the legitimate owner but it makes it much more harder for an attacker to gain access to the encrypted data.

What's New:

All OSes:

  • Update translations (Chinese, Dutch, French, German, Turkish).

Windows:

  • Make MSI installer compatible with system encryption.
  • Set minimum support for MSI installation to Windows 7.
  • Fix failure to create Traveler Disk when VeraCrypt is installed using MSI.
  • Don't cache the outer volume password when mounting with hidden volume protection if wrong hidden volume password was specified.
  • Reduce the size of EXE installers by almost 50% by using LZMA compression instead of DEFLATE.
  • Fix double-clicking mounted drive in VeraCrypt UI not working in some special Windows configurations.
  • Add registry key to fix BSOD during shutdown/reboot on some machines when using system encryption.
  • Under "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\veracrypt", create a REG_DWORD value named "VeraCryptEraseKeysShutdown".
  • Setting this registry value to 0 disables erasing system encryption keys which is the cause of BSOD during shutdown on some machines.

Linux:

  • Fix hidden volume settings not correctly displayed when enabling hidden volume protection in mount options window.
  • Fix generic Linux installer overwriting /usr/sbin if it is a symlink.
  • Fix crash when building with _GLIBCXX_ASSERTIONS defined.
  • Enable building from source without AES-NI support.

MacOSX:

  • Fix hidden volume settings not correctly displayed when enabling hidden volume protection in mount options window.