Manual VeraCrypt 1.16 (page 134 of 162) (English)

658731

134

Zoom out

Zoom in

1/162

130

Can I run VeraCrypt if I don’t install it?

Yes, see the chapter Portable Mode.

Some encryption programs use TPM to prevent attacks. Will VeraCrypt use it too?

No. Those programs use TPM to protect against attacks that require the attacker to have

administrator privileges, or physical access to the computer, and the attacker needs you to use the

computer after such an access. However, if any of these conditions is met, it is actually

impossible to secure the computer (see below) and, therefore, you must stop using it (instead of

relying on TPM).

If the attacker has administrator privileges, he can, for example, reset the TPM, capture the content

of RAM (containing master keys) or content of files stored on mounted VeraCrypt volumes

(decrypted on the fly), which can then be sent to the attacker over the Internet or saved to an

unencrypted local drive (from which the attacker might be able to read it later, when he gains

physical access to the computer).

If the attacker can physically access the computer hardware (and you use it after such an access),

he can, for example, attach a malicious component to it (such as a hardware keystroke logger) that

will capture the password, the content of RAM (containing master keys) or content of files stored on

mounted VeraCrypt volumes (decrypted on the fly), which can then be sent to the attacker over the

Internet or saved to an unencrypted local drive (from which the attacker might be able to read it

later, when he gains physical access to the computer again).

The only thing that TPM is almost guaranteed to provide is a false sense of security (even the

name itself, “Trusted Platform Module”, is misleading and creates a false sense of security). As for

real security, TPM is actually redundant (and implementing redundant features is usually a way to

create so-called bloatware). Features like this are sometimes referred to as ‘security theater’ [6].

For more information, please see the sections Physical Security and Malware.

Why does Windows Vista (and later versions of Windows) ask me for permission to run

VeraCrypt every time I run it in ‘portable’ mode?

When you run VeraCrypt in portable mode, VeraCrypt needs to load and start the VeraCrypt device

driver. VeraCrypt needs a device driver to provide transparent on-the-fly encryption/decryption, and

users without administrator privileges cannot start device drivers in Windows. Therefore, Windows

Vista and later versions of Windows ask you for permission to run VeraCrypt with administrator

privileges.

Note that if you install VeraCrypt on the system (as opposed to running VeraCrypt in portable

mode), you will not be asked for permission every time you run it.

Do I have to dismount VeraCrypt volumes before shutting down or restarting Windows?

No. VeraCrypt automatically dismounts all mounted VeraCrypt volumes on system

shutdown/restart.

Report abuse

Libble takes abuse of its services very seriously. We're committed to dealing with such abuse according to the laws in your country of residence. When you submit a report, we'll investigate it and take the appropriate action. We'll get back to you only if we require additional details or have more information to share.

Product:

Forumrules

To achieve meaningful questions, we apply the following rules:

First, read the manual;
Check if your question has been asked previously;
Try to ask your question as clearly as possible;
Did you already try to solve the problem? Please mention this;
Is your problem solved by a visitor then let him/her know in this forum;
To give a response to a question or answer, do not use this form but click on the button 'reply to this question';
Your question will be posted here and emailed to our subscribers. Therefore, avoid filling in personal details.

new questions and answers
new manuals

You will receive an email to register for one or both of the options.

Get your user manual by e-mail

Enter your email address to receive the manual of VeraCrypt 1.16 in the language / languages: English as an attachment in your email.

The manual is 2,98 mb in size.

You will receive the manual in your email within minutes. If you have not received an email, then probably have entered the wrong email address or your mailbox is too full. In addition, it may be that your ISP may have a maximum size for emails to receive.

The manual is sent by email. Check your email

If you have not received an email with the manual within fifteen minutes, it may be that you have a entered a wrong email address or that your ISP has set a maximum size to receive email that is smaller than the size of the manual.

The email address you have provided is not correct.

Please check the email address and correct it.

Your question is posted on this page

Would you like to receive an email when new answers and questions are posted? Please enter your email address.

Info

VeraCrypt 1.16 Manual

Product: