More info:
https://ro.uow.edu.au/cgi/viewcontent.cgi?article=1542&context=eispapers1
It’s also discussed in 5.18 of the cryptsetup FAQ.
Plausible Deniability is Theoretically Useless in some cases.
You are a dissident under an oppressive government, and you want to encrypt your plans to overthrow the government.
If you’re under suspicion, you can be tortured indefinitely even if the volume TrueCrypt is not found: it’s impossible to prove that you are NOT hiding data anywhere.
A correct headline might sound like this: TrueCrypt is not a panacea and will not necessarily save you from torture.
See also deniable encryption (decoy inner tomb) · dyne/Tomb · Discussion #495 · GitHub
This is very true. Plausible deniability only makes sense if:
So in my opinion, the UK, France, or Australia could be countries where it makes sense.
The real problem is the first condition: even if you think your country is generally following its own laws right now, this might change in the future. Particularly when it comes to the worst crimes of all: criticizing the government or evading taxes. And don’t forget that data or opinions which are legal today might be illegal in the future.
tird
provides the following options out of the box:
tird
files are indistinguishable from empty tird
containers.tird
, is just random data. Difference from data produced by VeraCrypt: the VeraCrypt container always has at least 1 key. The tird
container is just random data, and there may not be a key or payload at all.QWERTY
. 3. Custom settings were used: a fake MAC tag was set, so authentication was not successful. (tird
does not make it possible to distinguish between: 1. Incorrect keys. 2. Damaged ciphertext. 3. Deliberately set fake MAC tag. All of these options result in the same authentication failure)Alternatively, you can use more complex schemes:
tird
files (inside padding).