Feeds

Could invisibility beat encryption?

Canadians add cloaking device to Windows files

The essential guide to IT transformation

PCMesh has unveiled software which it claims can hide any Windows file or directory, not only from other users - or thieves - of the same PC, but even from the operating system or a virus.

"Data that's protected by PCMesh Hide Files and Folders is not visible, so it can't be attacked," the company claimed. "In fact, the software itself does not even run continually, so it does not announce its presence to snoopers and hackers. The only time the software is active is when it's being used to hide or reveal protected files or directories."

Ontario-based PCMesh refused to say how the US$39.95 (around £20) program works, but running it showed that it's nothing obvious - such as marking them as hidden system files, or marking the disk space as bad blocks.

However, while protected files did not show up in the file manager, Windows clearly knew that something was there - it reported the disk space as allocated, and wouldn't overwrite it. Protected files still showed up by name in Defrag analysis reports too, so they weren't completely invisible.

Why not do the job properly and encrypt the stuff that you want to hide? PCMesh's argument is that encrypted files are still visible on the disk, and their very presence tells others that you have something to hide. It also points out that it takes time to encrypt a file - a lot of time, if it's a large file - and the likes of DES encryption are now crackable anyway.

The problem is that if others can see you've installed Hide Files and Folders, that too tells them you have something to hide. And without encryption your data is still visible to anyone with a sector editor, so while the software might deter the casual eavesdropper, it's unlikely to satisfy serious security needs.

If you're a home user looking to hide stuff from the family, this might do the trick. But for anything more serious you have to encrypt - and references to DES being cracked are simply attempts to obfuscate, when the serious stuff has moved to 128-bit AES and beyond. ®

5 things you didn’t know about cloud backup

More from The Register

next story
Goog says patch⁵⁰ your Chrome
64-bit browser loads cat vids FIFTEEN PERCENT faster!
Chinese hackers spied on investigators of Flight MH370 - report
Classified data on flight's disappearance pinched
KER-CHING! CryptoWall ransomware scam rakes in $1 MEEELLION
Anatomy of the net's most destructive ransomware threat
NIST to sysadmins: clean up your SSH mess
Too many keys, too badly managed
Scratched PC-dispatch patch patched, hatched in batch rematch
Windows security update fixed after triggering blue screens (and screams) of death
Researchers camouflage haxxor traps with fake application traffic
Honeypots sweetened to resemble actual workloads, complete with 'secure' logins
prev story

Whitepapers

Gartner critical capabilities for enterprise endpoint backup
Learn why inSync received the highest overall rating from Druva and is the top choice for the mobile workforce.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Rethinking backup and recovery in the modern data center
Combining intelligence, operational analytics, and automation to enable efficient, data-driven IT organizations using the HP ABR approach.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Next gen security for virtualised datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.