I think veracrypt and bitlocker are adequate options and the choice will depend on your threat model. Trust a closed source first party tool or an open source third party tool.The ultra-paranoid will probable find problems with both. For casual use, if you are trusting windows anyway I personally dont see the issue with using its encryption as well. In practical terms I think its more important to ensure that whatever tool you are using is configured correctly for your usecase and that the rest of your opsec is up to par (eg password vs tpm based encryption, how you are handling backups, algorithm, hidden partition, etc...) In that sense the best tool is the one you know how to use correctly.
this post was submitted on 05 Jul 2023
5 points (85.7% liked)
Windows Security
367 readers
1 users here now
Expert-level Windows security discussions for security professionals: hardening, security updates, policies, standards, privacy, tips, tools, red team, blue team, and other related topics.
NO TECH SUPPORT QUESTIONS
founded 1 year ago
MODERATORS
As a sidenote, I think the more "serious" encryption options like dm-crypt don't cater towards windows usually.
view more: next ›