This project has moved. For the latest updates, please go here.

VeraCrypt does not protect against administrators?

Topics: Users Discussion
Sep 25, 2016 at 2:00 PM
Edited Sep 25, 2016 at 2:00 PM
The documentation (veracrypt.codeplex.com/wikipage?title=Security%20Model) says:
VeraCrypt does not (...) secure any data on a computer if an attacker has administrator privileges under an operating system installed on the computer.
Does that mean that if I lose a pendrive with an encrypted container and someone opens it on his computer with administrator account, he'll be able to read the contents of the file? Or that if someone steals my computer and copies an encrypted volume to his own machine, he'll be able to read it? If that was true, using VeraCrypt would make no sense, but that's what it says in the documentation...
Sep 25, 2016 at 2:09 PM
The answers to your questions are no as long as the file container is dismounted in VeraCrypt.

What you quoted is talking about system encryption and when your OS is running, someone with administrator privileges can gain access to the files, folders, etc since the system encryption is "mounted" when running.

Same applies for non-system encryption volumes that are mounted.
Secure any data stored in a VeraCrypt volume‡ if an attacker without administrator privileges can access the contents of the mounted volume (e.g. if file/folder/volume permissions do not prevent such an attacker from accessing it).
Sep 25, 2016 at 2:11 PM
Right, it makes sense now. Thanks for a quick answer.