NEWS - April 15, 2014
by Carol~ - 4/15/14 8:43 AM
So Far, So Good for TrueCrypt: Initial Audit Phase Turns Up No Backdoors
A initial audit of the popular open source encryption software TrueCrypt turned up fewer than a dozen vulnerabilities, none of which so far point toward a backdoor surreptitiously inserted into the codebase.
A report on the first phase of the audit was released today by iSEC Partners, which was contracted by the Open Crypto Audit Project (OCAP), a grassroots effort that not only conducted a successful fundraising effort to initiate the audit, but raised important questions about the integrity of the software.
TrueCrypt is praised as not only free and open source encryption software, but also that it's easy to install, configure and use. Given that it has been downloaded upwards of 30 million times, it stood to reason that it could be a prime target for manipulation by intelligence agencies that have been accused of subverting other widely used software packages, commercial and open source.
Continued : http://threatpost.com/so-far-so-good-for-truecrypt-initial-audit-phase-turns-up-no-backdoors/105433
TrueCrypt audit finds "no evidence of backdoors" or malicious code
TrueCrypt source code audit finds no critical flaws or intentional backdoors
First phase of TrueCrypt audit finds no backdoors