![]() This makes it easy to create a bootable disk for VeraCrypt from Rescue Disk just by removing/renaming its "VeraCrypt" folder.If "VeraCrypt" folder is missing from Rescue Disk, it will boot PC directly from bootloader stored on hard drive. ![]() Fix issue that was preventing Streebog hash from being selected manually during Pre-Boot authentication.Add menu entry in Rescue Disk that enables starting original Windows loader.Fix ESC on password prompt during Pre-Test not starting Windows.Enhance Rescue Disk implementation of restoring VeraCrypt loader.Implement new actions "shutdown" and "reboot" for EFI DcsProp config file.Set default timeout value to 3 minutes and default timeout action to "shutdown". Implement timeout mechanism for password input.Several enhancements and fixes for EFI bootloader:.Fix issue related to Windows Update breaking VeraCrypt UEFI bootloader.MBR Bootloader: workaround for issue affecting creation of hidden OS on some SSD drives.MBR Bootloader: dynamically determine boot loader memory segment instead of hardcoded values (proposed by neos6464).Add new driver entry point that can be called by applications to erase encryption keys from memory in case of emergency.Add option when system encryption is used to erase all encryption keys from memory when a new device is connected to the system.Erase system encryption keys from memory during shutdown/reboot to help mitigate some cold boot attacks.Mitigate some memory attacks by making VeraCrypt applications memory inaccessible to non-admin users (based on KeePassXC implementation).Side effect: Windows Hibernate is not possible if VeraCrypt System Encryption is also being used.Implement RAM encryption for keys and passwords using ChaCha12 cipher, t1ha non-cryptographic fast hash and ChaCha20 based CSPRNG.Add detection of RDRAND/RDSEED CPU features. Fix detection of CPU features AVX2/BMI2.Speed optimization of XTS mode on 64-bit machine using SSE2 (up to 10% faster).Use Hardware RNG based on CPU timing jitter "Jitterentropy" by Stephan Mueller as a good alternative to CPU RDRAND ( Add option to use legacy maximum password length (64) instead of new one for compatibility reasons.Increase password maximum length to 128 bytes in UTF-8 encoding for non-system volumes.To avoid hinting whether your volumes contain a hidden volume or not, or if you depend on plausible deniability when using hidden volumes/OS, then you must recreate both the outer and hidden volumes including system encryption and hidden OS, discarding existing volumes created prior to 1.18a version of VeraCrypt. Note to users who created volumes with 1.17 version of VeraCrypt or earlier:
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |