[aescrypt] Usability suggestions for Windows app.

Kaz Kylheku kaz at kylheku.com
Thu Sep 5 18:39:55 EDT 2013


On 05.09.2013 15:04, Paul E. Jones wrote:
>> A useful behavior would be to have the option to rename the existing
>> file, or to choose a different name for
>> the newly created file. (Deletion should be deferred to the user, who
>> should be using a secure shred program, at least for the plaintexts).
> 
> If the file is already encrypted or decrypted, why offer to create
> another version with a different name?

Ah, this is because it's not necessarily the same file.

The source file may have changed, and so the target plaintext or 
ciphertext may be out of date.

For instance, you may be working on a document and over the course, 
encrypt it more than once.

Keeping an out of date ciphertext could be handy since the prior version 
of the plaintext can be retrieved from it.  If that isn't wanted, the 
program could optionally delete or simply overwrite it. (Insecure 
deletion of ciphertext doesn't raise an issue.)

Keeping an out of date plaintext allows the program to avoid 
implementing secure deletion. The file plain.txt is renamed to 
plain.txt.1 or whatever, and the user can deal with disposing of 
plain.txt.1.




More information about the aescrypt mailing list