Getting into SynCrypt
SynCrypt offers two user interfaces: a standard application window and a floating toolbar. The software displays the standard application window when you first log on, as Screen 2 shows. If you double-click the button bar in the application window, the window shrinks to a floating customizable toolbar. An always-on-top feature keeps the floating toolbar visible at all times. The feature effectively adds encrypt and decrypt buttons to your favorite email, word processing, and other text-based programs.
Standard file encryption is easy with SynCrypt. You select the file and the user or group you want to receive the file. SynCrypt uses a hybrid encryption process. First, SynCrypt encrypts the data with your choice of a single-key encryption algorithm and a randomly generated key. SynCrypt then uses the recipient's public key to encrypt this randomly generated key. SynCrypt defaults to using Blowfish encryption, but you can also use the International Data Encryption Algorithm (IDEA), Data Encryption Standard (DES), and Triple DES encryption. The default encryption process (Blowfish) is remarkably quick. To change the default encryption algorithm, select Options from the Setup menu, and select the new algorithm from the SynCrypt setup options panel.
An interesting feature of the product is SynCrypt's Vault directory. Moving a file to a SynVault directory automatically encrypts the file, and dragging a file out of the directory decrypts the file. The installation procedure creates a default SynVault directory, but the software doesn't automatically activate it. To activate the SynVault directory or unlock (disable and decrypt) a directory on the SynVault list, select the SynVault menu from the Tools menu. From the SynVault menu, the Setup SynVault option activates automatic encryption for the selected directories. Similarly, the Unlock SynVault option deactivates automatic encryption and unencrypts existing files.
One of SynCrypt's strengths is its ability to work with any Windows application that can move text to and from the Windows clipboard. The software uses Bikini encryption, which lets you encrypt all or part of the text in an application window. SynCrypt moves text to and from the Windows clipboard for processing and comes configured for various word processors and email programs. SynCrypt uses cut-and-paste keystrokes, application menu items, or Dynamic Data Exchange (DDE) commands to support other applications.
To encrypt an entire document with Bikini encryption, click the mouse anywhere in the text and click the Encrypt button on SynCrypt's floating toolbar. To encrypt only part of a document, highlight the desired selection and click the Encrypt button on the toolbar.
As a Microsoft Exchange user and a pretty good privacy (PGP) 5 user, I miss the simplicity of the PGP add-in and its one-button access from the toolbar. SynCrypt's floating toolbar comes close, but I hope SynCrypt will add specific support for popular packages in the near future. Given the popularity of PGP, a SynCrypt-to-PGP interface would also be nice. With a means to store and use PGP keys, SynCrypt could provide one interface for both SynCrypt-based and PGP-based messages.
SynCrypt's embedded encryption option (steganography) lets you hide a file in a .bmp or .gif graphics image. Even with the data hidden in the file, the graphics image displays as you'd expect. If you list the graphics file in NT Explorer, you see the original file size; the graphics file gives no obvious indication of the data hidden within. When you combine embedded and local encryption, you can store a file or zip library that only you know about.
Trading Cryptography Keys
As with any double-key encryption product, you must distribute your public key to anyone sending you secured information. To send your public key to another user, you use SynCrypt's Keys Exchange dialog box. If you can connect to the Internet, you can email your public key. With built-in Simple Mail Transfer Protocol (SMTP) support, you need to know only the other person's email address and the name of a valid SMTP server to process your request. The installation program provides a list of known mail servers to choose from. Assuming SynCrypt is running on the recipient's computer, the recipient can double-click the .syn file in the email message to receive a key. SynCrypt adds your key to the recipient's key file in a clean process. You can also use a 3.5" disk to distribute your public key to another user.
Digital Signature Support
In addition to providing email and file encryption and decryption, SynCrypt provides flexible and easy-to-use digital signature verification support. Digital signatures serve two purposes: authenticating the sender's identity and verifying that the user received the data unmodified. SynCrypt uses your private signature key and the file that you want to digitally sign to create a digital signature file. SynCrypt can combine this file with the data file to create one package file, or you can keep the signature file separate from the data file and send both to the recipient.
The Password Safe
Systems administrators who manage complex networks where users need multiple user IDs and passwords to access network resources can have a tough time tracking logon information in a secure manner. SynCrypt's Password Safe makes this job easy. This feature alone justifies the product's modest cost. The Password Safe maintains an annotated list of user IDs and passwords and provides several convenient features, such as a random password generator. You can double-click an entry in the Password Safe to transfer a password to the clipboard so that you can paste it into your favorite application. This feature is especially handy and can save you typing time if your application requires strong passwords (e.g., a 30-character password string requiring a combination of uppercase, lowercase, numbers, and special characters). SynCrypt also includes a backup feature so that you can copy the encrypted Password Safe to the location of your choice and easily restore it by name. Unfortunately, SynCrypt lacks a simple mechanism to update the Password Safe backup. You have to delete the existing backup or create a new one under a new name every time you perform a backup.
Wrap Up
SynCrypt's various features, ease of use, and modest price make it suitable for corporate workgroup users and individual users who need to secure their project files, email, and personal information. You can download a free trial version of SynCrypt from the SynCrypt Web site. This demo allows 10 encryptions and unlimited decryptions.
End of Article
Prev. page
1
[2]
next page -->
