Free open source on-the-fly encryption software
Due to hardware or software errors/malfunctions, files stored on a TrueCrypt volume may become corrupted. Therefore, we strongly recommend that you backup all your important files regularly (this, of course, applies to any important data, not just to encrypted data stored on TrueCrypt volumes).
To back up a non-system TrueCrypt volume securely, it is recommended to follow these steps:
If the main volume is a hidden TrueCrypt volume (see the section Hidden Volume), the backup volume must be a hidden TrueCrypt volume too. Before you create the hidden backup volume, you must create a new host (outer) volume for it without enabling the Quick Format option. In addition, especially if the backup volume is file-hosted, the hidden backupvolume should occupy only a very small portion of the container and the outer volume should be almost completely filled with files (otherwise, the plausible deniability of the hidden volume might be adversely affected).
If you follow the above steps, you will help prevent adversaries from finding out:
Note: In addition to backing up files, we recommend that you also back up your TrueCrypt Rescue Disk (select System >Create Rescue Disk). For more information, see the section TrueCrypt Rescue Disk.
To back up an encrypted system partition securely and safely, it is recommended to follow these steps:
If you do not have multiple operating systems installed on your computer, you can boot a WinPE or BartPE CD/DVD (‘live’ Windows entirely stored on and booted from a CD/DVD; for more information, search the section Frequently Asked Questions for the keyword ‘BartPE’).
If none of the above is possible, connect your system drive as a secondary drive to another computer and then boot the operating system installed on the computer.
Note: For security reasons, if the operating system that you want to back up resides in a hidden TrueCrypt volume (see the section Hidden Operating System), then the operating system that you boot in this step must be either another hidden operating system or a “live- CD” operating system (see above). For more information, see the subsectionSecurity Requirements and Precautions Pertaining to Hidden Volumes in the chapter Plausible Deniability.
If the operating system that you want to back up is installed in a hidden TrueCrypt volume (see the section Hidden Operating System), the backup volume must be a hidden TrueCrypt volume too. Before you create the hidden backupvolume, you must create a new host (outer) volume for it without enabling the Quick Format option. In addition, especially if the backup volume is file-hosted, the hidden backup volume should occupy only a very small portion of the container and the outer volume should be almost completely filled with files (otherwise, the plausible deniability of the hidden volume might be adversely affected).
If you follow the above steps, you will help prevent adversaries from finding out:
If you store the backup volume in any location where an adversary can make a copy of the volume, consider encrypting the volume with a cascade of ciphers (for example, with AES-Twofish- Serpent). Otherwise, if the volume is encrypted only with a single encryption algorithm and the algorithm is later broken (for example, due to advances in cryptanalysis), the attacker might be able to decrypt his copies of the volume. The probability that three distinct encryption algorithms will be broken is significantly lower than the probability that only one of them will be broken.