Dec 212013
 

I just learned about the existence of an ongoing effort to publicly audit TrueCrypt, which I’ve started using to replace all my PGP disks.

The latest progress update is at

http://blog.cryptographyengineering.com/2013/12/an-update-on-truecrypt.html

This is awesome, and in my opinion an important aspect of the future of cryptography – “open source”, crowdfunded, transparent audits of crypto implementations are the way to rebuild confidence in technology as a vital element for ensuring trust and privacy.

In this sense, I believe that the NSA revelations may actually have had a net positive effect, in finally dispelling any lingering doubts that even open and standardized crypto implementation standards are subject to being undermined – and as we all know, once a back door is in place, anyone can hypothetically use it.