Dear Nitrokey support,
I have bought two Nitrokey start keys, interested in secure mailing and encoded (virtual) disk.
However, later I noted that the security your key provides for the latter task is not as high as I wanted, see the following note on your web:
“Security Consideration: Please note that VeraCrypt doesn’t make use of the full security which Nitrokey (and smart cards in general) offer. Instead, it stores a key file on the Nitrokey which theoretically could be stolen by a computer virus after the user enters the PIN.
Note: Aloaha Crypt is based on TrueCrypt/VeraCrypt but without the described security limitation.”
I was trying quite hard to make this Aloha Crypt running but to no avail. Could you please provide me with more detailed instructions, as you do for VeraCrypt?
Furthermore, since Aloaha was not working for me, I resigned and wanted to go for a less secure variant of VeraCrypt. Following precisely the instructions from your web, I got problem with the fourth step
“Now you should be able to import the generated key file via Tools>Manage Security Token Keyfiles. You should choose the first Slot ( User PIN). The key file is then stored on the Nitrokey as ‘Private Data Object 1’ (PrivDO1).”
Importing Keyfile to Token, I get
"Security token error: DEVICE ERROR".
So it seems that at the moment, no disk encryption in Win 10 is working out of the box with Nitrokey Start. (whereas SSH logins and encrypted emails work just fine, simply by following your instructions)
Could you provide me with some support here? I am not an expert in cryptography, that is why I bought your product in the first place.
Best regards, Mirek