Hi all,

I'm new to the use of mcrypt. I'm trying to encrypt files on my computer that contain some data I'd like to keep for myself.

I've been looking at mcrypt and some installed algorithms but I've got no idea what algorithm to use best. I've been "wiki-ing" a bit and rijndael-256 seems to be rather effective.

I'm not interested in the speed of the en/de/cryption. Nor am I interested in the space it'd take on my hd. I'm talking about a few <1MB files on a big RAID array. Main interest is a safe algorithm.

I guess the best to begin with except for a good algorithm, is a long passphrase no-one will ever be able to guess. (the basics of a strong passphrase/word)

Some other advice you lads can give me?

THX

Encryption algorithms are like antibiotics. You cannot easily say which one works the best, but there seems to be some more consensus about which ones do not. I don't think people uses DES for critical tasks nowadays.

Note that I am not a crypto expert, nor I use mcrypt, but I hope this helps:

AES/Rijndael, Blowfish, Twofish... they should make for pretty safe options. It seems to me than most times, the risks reside in implementations or factors that don't rely directly on the crypto-algorithym. For example, AES with an ECB mode is not the best idea, because there are ways to break it via watermarking (or so I have heard).

If you are that paranoid, I suggest you to use a full partition encryption scheme, such as dm-crypt. It is a cleaner solution and can avoid data leaks traditional file based encryption could incur into.

The key to any encryption scenario is: first, the key; and then, the leakiness. The bottom-line, then, is not only that "it's more difficult than it looks," but also that "it has been done before, and done quite thoroughly."

If you have individual files to encrypt, I suggest that you obtain a copy of the gpg security suite (free, of course ...) and then read its documentation thoroughly, especially the part about keychains and digital certificates. http://www.gnupg.org ... http://gnupg.org/gph/en/manual.html.

You want a scenario that is pragmatically simple for you to actually use, in real life, knowing that this business-requirement is one that has been solved, and solved very well. You'll want to not only "keep it to yourself," but maybe also to know that a document isn't forged, hasn't been tampered with. Maybe you will need for it to be sent reliably to someone else, such that no one but the intended recipient can open it (and they'll positively know that it came from you, and that it hasn't been altered in-transit), even though neither of you know one another's private keys, and so on and on. You'll want an easy way to exchange keys, through a public keyserver.

You'll want to encrypt those private keys with a passphrase, but, y'know, if you had to type it in each and every time, you'd inevitably pick a short, weak one that's easy to (re-)type. What you need, then, is a nice "keychain" that will let you "unlock" that key, use it for a few minutes, then "lock" it again. You need to be able to change that passphrase without invalidating any of the documents that were encrypted in the past. If a laptop gets nicked, you need to be able to kill those keys but not others. Got that.

So: "we have the technology." You're not trying to break any laws here ... you just need rugged, civilian-grade security. And, in my opinion, "gpg is it."

If you trying to keep general snoops out of your files, pretty much any accepted algorithm will do. If you're worried about corporations or governments with lots of resources then Serpent, Twofish, Blowfish are all good choices. Serpent is arguably the most secure, though slowest, and Blowfish has had the most testing and remained unbroken.

sundialsvcs also gives good advice regarding gpg use.

Well, usually the weak-link in the chain is the key management, not the choice of algorithm. (In many protocols, including VPN and SSL, the choice of cipher is part of the initial key-exchange handshake.) No one's gonna brute-force the key. The weak link in the chain is frankly going to be ... you. The folks who've designed these systems thought a whole lot, not just about the theoretics of the cipher algorithms, but also and especially human nature and human practice.