VeraCrypt
aboutsummaryrefslogtreecommitdiff
path: root/src/Common/Crypto.h
diff options
context:
space:
mode:
authorMounir IDRASSI <mounir.idrassi@idrix.fr>2014-07-26 15:46:17 (GMT)
committerMounir IDRASSI <mounir.idrassi@idrix.fr>2014-11-08 22:21:40 (GMT)
commit97154aaf51efe787dd1678c8e1baeeb65ce46fe1 (patch)
tree0034e3b6d3c272ceb35b3b186305e8510afc64c5 /src/Common/Crypto.h
parent1ddae209326858f1c244a4b52ba2bd068cc8985a (diff)
downloadVeraCrypt-97154aaf51efe787dd1678c8e1baeeb65ce46fe1.zip
VeraCrypt-97154aaf51efe787dd1678c8e1baeeb65ce46fe1.tar.gz
Lower number of times we overwrite volume header during the encryption of a partition if the user choose to wipe the driver. Latest studies show that even one pass is enough to make data irretrievable. A value of 3 is a conservative approach that enhance performance without scarifying security. http://www.infosecisland.com/blogview/16130-The-Urban-Legend-of-Multipass-Hard-Disk-Overwrite.html http://digital-forensics.sans.org/blog/2009/01/15/overwriting-hard-drive-data/
Diffstat (limited to 'src/Common/Crypto.h')
-rw-r--r--src/Common/Crypto.h3
1 files changed, 3 insertions, 0 deletions
diff --git a/src/Common/Crypto.h b/src/Common/Crypto.h
index e66ac18..ac92509 100644
--- a/src/Common/Crypto.h
+++ b/src/Common/Crypto.h
@@ -159,6 +159,9 @@ typedef struct
# define PRAND_DISK_WIPE_PASSES 256
#endif
+/* specific value for volume header wipe used only when drive is fully wiped. */
+#define PRAND_HEADER_WIPE_PASSES 3
+
#if !defined (TC_WINDOWS_BOOT) || defined (TC_WINDOWS_BOOT_AES)
# include "Aes.h"
#else