Stylometric Analysis Of The TrueCrypt Authored Documents


Out of curiosity, I performed a basic stylometric analysis on several pieces of material that were known to have been authored by the TC developer(s) and referenced that against a control (a sample of my own writing style from this blog) and the text currently displayed on the TC site. While we were unable to draw many conclusions, the following information may be enlightening:

It appears that the individual who was responsible for the user guide was not responsible for the dialog box message. It is likely that the author of the user guide was the same person who authored the ‘warning’ that was placed upon the site yesterday (chi square 18.462, threshold 20% or 22.76).

The individual who appeared to have composed the dialog message appears also to be the one responsible for some of the source code comments we tested.


The security world sure moves fast! A website ( has been created with a stated intent to continue maintaining the Truecrypt code, obviously starting with the last fully functioning code base of 7.1a. The site also has a mirror of the TC installers for various platforms. Whether this will amount to anything is anyone’s guess at this point in time.

Truecrypt Update

I figured it would be pertinent to update everyone on the Truecrypt situation. Ultimately, very little has changed and we don’t know all that much. Matthew Green had an exchange with Steven Barnhart on Twitter essentially stating that the development team simply got tired of updating the software and that this action was unrelated to the audit.

My belief that this shutdown was at the request of a government agency persists despite information flowing through to the contrary, and there are a few anecdotal indications that seem to indicate that the page posted to the website was a canary, remembering that directly stating that development has been discontinued due to the receipt of a NSL would violate the order’s secrecy provision and the likely result would be the party responsible would face a secret court. So, one can understand why double talk and innuendo are required when so much is at stake.

Posters on Bruce Schneier’s blog have pointed out the strange wording of the statement, “using Truecrypt is not secure as it may contain unfixed security issues”; perhaps they were specifically ordered not to fix a certain vulnerability in the code and instead wound up the project. Perhaps the statement on their website (emphasis mine) is a warning of such interference.

The other curious thing is that requests to resources on return a 410 (Credit: Andy). The 410, according to the hypertext RFC is used “if the server knows …. that an old resource is permanently unavailable … This status code is commonly used when the server does not wish to reveal exactly why the request has been refused”

Of course we are all just speculating. If the developers of the project truly wished to wind up their operations and everything was otherwise okay they would not have acted in this manner. Advising users of Windows to migrate to Bitlocker is anathema to the majority of TC’s userbase. A simple note on the website that the project has been discontinued due to a lack of funds/time/support/devs/etc. would have been far better and leave less questions surrounding the true circumstances of their abrupt exit from the market. Indeed, despite the fact that old and unmaintained software can have unpatched vulnerabilities, most would leave their full project page and download area active, albeit with the above caveat attached. A statement to the effect that they are abandoning the source code into the public domain or relicensing the code code with a FOSS-friendly license would have also been the responsible thing to do – allowing others to fork and build on the work that you started. Indeed, even if they did all of the above a fork may not be the best idea given the source code may be encumbered with non-free components (those unaware of the E4M controversy that occurred early in the life of TC should view the History section of the project’s Wikipedia page for a brief primer).

The smartest thing – moving forward – would be for a new project to begin. This project would aim to create a functional replacement for Truecrypt whilst not necessarily using TC code nor providing backward compatibility will provide a modern full disk encryption suite primarily for Windows systems.

The project should:

  1. support GPT/UEFI
  2. have an on-disk format compatible with LUKS or dm-crypt
  3. use a crypto accelerator if the motherboard has one fitted
  4. have a simple user interface and comprehensive help where options are unclear

Essentially all of the above (with the exception of points 1 and 3) were implemented in FreeOTFE almost ten years ago. The latter has also become abandonware but its source code – along with the Linux kernel source for LUKS and its associated modules – would be useful for someone attempting a (near) clean room re-implementation.

For the moment – the average Windows user has three choices. They can continue to use the deprecated v7.1a of Truecrypt despite the ominous warning, they can migrate over to a commercial solution like Bitlocker or PGPdisk or they can switch to a platform that has decent and open source FDE such as Linux or FreeBSD. The use of file based encryption tools is also a possibility but one fraught with danger on Windows, which is liable to leave unencrypted copies of your data everywhere (e.g. thumbnail caches, browser cache for viewed hypertext files, filenames at the very least stored in recent document lists, etc.).

As I said earlier, when the Snowden disclosures were brand new and still leaking out in a piecemeal fashion from the Guardian et. al. – the NSA have started something big, and the cumulative results of what amounted to them shaking the crypto-tree hard enough for some apples to fall out will be felt for a long time and result in definite changes to the way we conduct business and confidential transactions online. I believe that we are perhaps witnessing the opening salvos of a war between the government agencies and privacy advocates and the hackers who make privacy software happen. The EFF probably needs our support and funding, so if anyone has a spare few dollars and wants to donate to a good cause, the EFF is certainly a worthy foundation.

TrueCrypt Website Declares Project Dead

It appears that the truecrypt project is officially dead. At approximately 1800hrs the Truecrypt project’s sourceforge project page was updated, with the status being set to ‘inactive’ and new binaries posted – ostensibly of ‘Truecrypt v7.2′. The main page featured the warning that “Truecrypt is not secure as it may contain unfixed security issues.’ The signing keys used match those used previously. Krebs notes that there have been no changes to delegation, etc.

Their rationale that Truecrypt development was ended as a result of Windows XP becoming end-of-support seems curious as there appears no relationship between the two. Their advice to to abandon Truecrypt for propreitary solutions like Microsoft’s (almost certainly backdoored) BitLocker also seems odd.

Users on Schneier’s blog have been discussing the various possibilities with the most plausible mentioned being that the Truecrypt team were compelled via NSL or other government instrument to co-operate and that burning down the project was potentially the thing that they could have done. This is possibly why they were unable to give a legitimate explanation, instead citing the ludicrous one regarding Windows XP support. Another possibility is that Matthew Green et. al.’s TrueCrypt audit had spooked the authors in some way.

Just twelve hours ago I believed that this was a website compromise, but I am now convinced these actions were initiated by a member of the TC team and not by a malicious attacker. It is indeed possible that one of the developers has gone rogue, but I believe that it is almost a certainty at this point that TC – as we have known it, at least – is dead. Given the licensing issues (TC’s license is not completely FOSS friendly) it remains far from certain that anyone will fork the source from 7.1a and continue to develop the software.

This marks the death of the second free(ish) Windows full disk encryption suite with the first being FreeOTFE. The important thing to note is that Truecrypt had several very large stumbling blocks in the way of its acceptance by the community – some of them technical, some of them legal and license related, and the vast majority of them social. The shadowy Truecrypt Foundation and the way the organization attempted to shield themselves from any scrutiny made many understandably cautious of the software. Only several months ago on this very blog I detailed the myriad issues I have with Truecrypt and advised readers not to trust the product and to instead seek alternatives. That said, there are no free and trustworthy full disk encryption products for Windows (and obviously, Windows itself – and the underlying Wintel architecture – has some major trust issues of its own).

TrueCrypt Website Compromised?


Earlier today we found the official TC website had been modified and now featured a warning to disuse the product. I initially suspected website compromise but found that the “new” TC packages offered are signed by a legitimate looking key. To further confound the issue a representative from Sourceforge reported earlier that no unusual activity had been noticed. This may be a plain and simple compromise but it may also be the TC developer’s way of informing the public that they are unable to guarantee their privacy, perhaps as a result of a NSL. I am trying to contact individuals who should know more about what is going on, and will update this post later today as the fog dissipates on this issue.

Readers of this blog will know that I have never particularly liked the secrecy behind TC’s development. It remains to be seen what happens next, especially with the interim results of the TC audit due to be released next week.


Amusingly, Apple appeared to have neglected to renew a certificate used for one of their software update servers, resulting in users being declined the ability to perform updates or install software from the Mac Store. The issue, which presumably began on May 24, 2014 (the original certificate’s expiration date) and was corrected soon after, but not before many took to the Internet to vent their frustration that one of the world’s biggest software companies could neglect to update their SSL certificates.

eBay Encourages Password Changes

If you are an eBay user, you’ve probably already received an email from their corporate HQ encouraging you to change your password. The mass mail appears to be related to last year’s compromise of eBay, and is signed by President of eBay Marketplaces David Wenig. The email states that “our company discovered a cyberattack” and that this attack “compromised a database containing eBay user passwords.”

Given eBay has in excess of 113 million users and that password credentials would almost certainly be stored in a database table along with the user’s email address, such a breach could potentially be a gold mine for attackers looking to capitalize on users who have reused their password amongst multiple Internet services. The passwords were almost certainly hashed, but given human nature and the vast dictionaries used by those eager to exploit credential dumps it would not be unreasonable to assume that at least one third of the passwords would be recoverable.

The mass mail out is an unmitigated PR disaster for eBay, who state that they believe the compromise occurred somewhere between February and March of this year. According to eBay, the leaked dump includes the physical address, date of birth and full name of the eBay customer – pretty much an identity thieves’ wet dream. There is the potential for eBay to become the new Sony if the stolen information makes its way onto the wider Internet and is widely misused.

The saddest thing about this whole thing is that eBay has been aware of said compromise for quite some time and has only now elected to inform their customer base. How much avoidable damage has been done to their clients as a result of their deliberately sluggish disclosure?


Cloudflare Writes On The Deprecation Of RC4

The move away from RC4 to AES is a sensible pre-emptive action being taken by those in the industry. Cloudflare recently wrote a blog post detailing their rationale for removing RC4 as a supported cipher for modern browsers using TLS 1.1 or greater. I re-iterate that RC4 has not been demonstrably broken but it would appear only a matter of time.

New Warrant Canary

Hash: SHA1

 WARRANT    _))               Mike The Goat
 CANARY    > *\     _~        B7A04065 4096R exp 20151026 (current)
           `;'\\__-' \_       6054D4D2 4096R exp 20140104 (expired)
              | )  _ \ \
             / / ``   w w     ..> retrieve email from PGP metadata <..
            w w

I, the author of the blog known as Mike The Goat and identified by
ownership of the private key of B7A04065 categorically state under
penalty of perjury, that I am not an employee of any United States
government organization including but not limited to the FBI, NSA,
CIA or ATF. Furthermore I declare that I am not an employee of a
state government, nor am I an employee, member or volunteer of any
law enforcement agency both in the United States and abroad.

As at 06:38 PDT (2338Z) on Monday the 12th of May I have received
no communications from any government agency invoking FISA or
similar provisions to compel both my cooperation and my silence by
prohibiting discussion of the order and its content.

While I understand that the aforementioned legislation, despite it
being blatanly unconstitutional can be used to 'gag' those named
within, I will not sign any declaration if any of the information
contained within it is not truthful or misleading. I will comply
with this even if it ultimately results in the contravention of a
court (an illegal and unconstitional one at that) order.

As I write this declaration the DAX is at 9,672.81 with Au and Ag
at 1291.1 and 19.550 respectively. Reuters headlines include
"Franco-German show of unity masks policy divide" while the front
page of USA Today's website reads "Report: New video shows missing
Nigeria schoolgirls." Bloomberg reports "Russia Hails Local Votes
to Split From Ukraine as EU Imposes Sanctions." This information
is appended to each declaration to prove that this text really was
composed and digitally signed on the date declared to eliminate
the possibility that the declarations were signed en masse at an
earlier date. More information is available on my blog.

Version: GnuPG v2.0.21 (FreeBSD)



Wang Jing, a PhD student at a Singaporean university has discovered a vulnerability in OpenID and OAuth. While not earth shattering, with sites like Facebook relying on it to authenticate their users the impact of such a vulnerability could be non trivial.