+Xinok Subscriber² Posted March 21, 2011 Subscriber² Share Posted March 21, 2011 Backup TrueCrypt Disk Header About This Guide This guide will show you how to backup and restore the header of your TrueCrypt encrypted disks. Why would I want to do this? The header contains important information needed for accessing the data, including encryption keys. It is impossible to read any of the encrypted data without it, so if the header ever becomes corrupt for any reason, you could lose all of your data on the disk. Backing up the header and storing it in a safe place will ensure you'll be safe if this ever happens. TrueCrypt disks also contain a backup header located at the end of the volume. Instructions are provided for this as well. Table of Contents Encrypted File Container, Partition, or Disk 1. Choose Volume 1a. Make sure disk is unmounted 1b. Select Disk 2. Backup Header 2a. Backup Header 2b. Store the Backup Header in a Safe Place 3. Restore Header 3a. Restore from Embedded Backup Header 3b. Restore from Backup Header File Encrypted Operating System 4. Backup OS Header 4a. Select Encrypted Operating System 4b. Backup and Burn ISO 5. Restore OS Header Encrypted File Container, Partition, or Disk 1. Choose Volume 1a. Make sure disk is unmounted Before you can backup the header, first you must make sure that the encrypted disk is not already mounted. If it is, select the drive letter in the list and click Dismount in the main window. 1b. Select Disk Click on Select File or Select Device and choose the disk you want to backup. Do not mount the disk! The disk must be unmounted for you to backup the header. 2. Backup Header 2a. Backup Header This section shows you how to backup the volume header to an external file. Click on Volume Tools... and select Backup Volume Header... Type in the password and set any keyfiles for the encrypted volume, then click OK. You will be asked if the encrypted disk contains a hidden volume. Choose the appropriate option. If the disk contains a hidden volume, you will be asked to enter the password for the hidden volume as well. Choose a location to save the file. This is the file which your header will be backed up to. You will be asked to move the mouse around. Do this for a few seconds and then click Continue. 2b. Store the Backup Header in a Safe Place So you do not lose the backup header, store it in a safe place. Store it in an online backup if possible, such as to a DropBox account. If you use webmail such as Gmail or Hotmail, you can email the header to yourself. The header is encrypted using your password so it should be safe to backup online. 3. Restore Header Follow the same instructions for choosing the volume mentioned under section 1. 3a. Restore from Embedded Backup Header TrueCrypt volumes actually contain an embedded backup header stored at the end of the volume. You could try this first before restoring the header from a file. If you get an error, Incorrect password or not a TrueCrypt volume, the embedded backup header may be corrupt or non-existent (Older TrueCrypt versions did not have this). In this case, move on to next section, Backup Header File. Click on Volume Tools... and select Backup Volume Header... Choose Restore the volume header from the backup embedded in the volume Type in the password and set any keyfiles for the encrypted volume, then click OK. You will be asked to move the mouse around. Do this for a few seconds and then click Continue. 3b. Restore from Backup Header File If you failed to restore using the embedded header, you could try restoring the header from an external file. Click on Volume Tools... and select Backup Volume Header... Choose Restore the volume header from an external backup file Browse for the file which contains the backup header. Be absolutely sure this is the correct backup header for this volume! Type in the password and set any keyfiles for the encrypted volume, then click OK. You will be asked to move the mouse around. Do this for a few seconds and then click Continue. Encrypted Operating System The instructions for an encrypted operating system are different. Headers are not backed up to a file. Instead, the header is backed up to a ISO which can be burned to a CD or DVD. The CD or DVD is bootable and may be used to restore the volume header. Encrypted operating systems do not contain an embedded backup header! This is more the reason to backup the header for these volumes. 4. Backup OS Header 4a. Select Encrypted Operating System There are two ways you can backup the header for the encrypted OS. If you are already booted into the encrypted OS... From the main menu, select System -> Create Rescue Disk... If you are NOT booted into the encrypted OS... Click Select Device... and choose the partition of the encrypted OS. Then click Volume Tools... and select Create Rescue Disk... Choose a location to save the ISO file. Name it something appropriate, and make sure to give it the .ISO file extension. 4b. Backup and Burn ISO It is highly recommended that you burn the ISO to a blank CD or DVD. If you are not asked to burn the ISO and need software to do so, there are many great freeware solutions available: BurnAware ImgBurn InfraRecorder It is also recommended to backup the ISO file to online storage if possible. Store it in a DropBox account, or email it to yourself. The header in the ISO is encrypted using your password so it should be safe to backup online. 5. Restore OS Header To restore the encrypted operating system header, you must boot from your rescue disk. On this screen, press F8 to access repair options. Press 2 to restore the bootloader. Press Y to confirm. Press 3 to restore the volume header. Type in the password of the volume header. Press Y to confirm. Link to comment Share on other sites More sharing options...
Recommended Posts