69
Volumes -> Add/Remove Keyfiles to/from Volume
This function allows you to re-encrypt a volume header with a header encryption key derived from
any number of keyfiles (with or without a password), or no keyfiles at all. Thus, a volume which is
possible to mount using only a password can be converted to a volume that require keyfiles (in
addition to the password) in order to be possible to mount. Note that the volume header contains
the master encryption key with which the volume is encrypted. Therefore, the data stored on the
volume will
not
be lost after you use this function.
This function can also be used to change/set volume keyfiles (i.e., to remove some or all keyfiles,
and to apply new ones).
Remark: This function is internally equal to the Password Change function.
When TrueCrypt re-encrypts a volume header, the original volume header is first overwritten 256
times with random data to prevent adversaries from using techniques such as magnetic force
microscopy or magnetic force scanning tunneling microscopy [17] to recover the overwritten
header (however, see also the chapter
Security Requirements and Precautions
).
Volumes -> Remove All Keyfiles from Volume
This function allows you to re-encrypt a volume header with a header encryption key derived from
a password and no keyfiles (so that it can be mounted using only a password, without any
keyfiles). Note that the volume header contains the master encryption key with which the volume is
encrypted. Therefore, the data stored on the volume will
not
be lost after you use this function.
Remark: This function is internally equal to the Password Change function.
When TrueCrypt re-encrypts a volume header, the original volume header is first overwritten 256
times with random data to prevent adversaries from using techniques such as magnetic force
microscopy or magnetic force scanning tunneling microscopy [17] to recover the overwritten
header (however, see also the chapter
Security Requirements and Precautions
).
Dostları ilə paylaş: