Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 7 subscribers
  • Views 4730 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Integrity protection in SafeGuard LC

MichaelMessner

Hey SafeGuard community,

 as far as I can see SafeGuard LC uses AES-CTR. How is the integrity of a SafeGuard LC encrypted file guaranteed? Is there any documentation around the integrity protection in SafeGuard?

Thanks,

Mike



This thread was automatically locked due to age.
  • 0

    The integrity of a SafeGuard LC (or other Sophos File Encryption) encrypted file can not be guaranteed.

    All that can be guaranteed is, that if a file is altered after encryption, it can´t be properly decrypted anymore.

    “First things first, but not necessarily in that order” – Doctor Who

  • 0 in reply to j0hnV

    j0hnV said:

    All that can be guaranteed is, that if a file is altered after encryption, it can´t be properly decrypted anymore.

    If I remove some bytes at the end of the encrypted file the encryption process works fine. After decryption the removed bytes (the decrypted text of these bytes) are missing. So it looks like it is possible to remove stuff that sits at the end of a file and nobody realizes that the file was tampered.
    Best,
    Mike
  • 0 in reply to MichaelMessner

    Indeed. Although double double click didn´t work, I could right click and decrypt, and then open it with wordpad. But that is not how anyone would approach data. Tested with SGN8 Synchronized Encryption by the way. 

    “First things first, but not necessarily in that order” – Doctor Who

Unfiltered HTML