I didn't take notes on everything I read from this weekend, but as a whole, everyone's comments from across the Internet left me feeling not so confident with TrueCrypt - especially for Mac.
And again, what's the feasibility of a cold-boot attack? Look at the details of that attack; you can't just stick a laptop in a freezer. If someone with those kinds of resources are after your data, they'll probably sooner resort to a rubber hose attack.
My biggest fear are undocumented "Back Doors" that would let in Law Enforcement, or in my case, Apple...
I am also increasingly worried about trusting an FDE solution when in fact I am ignorant on the real issues and it turns out that whatever I chose has gaping holes in it.
It is analogous to people who blindly trusted HideMyAss and then ended up in jail. (Not that I am feeling sorry for hackers, but you see what I mean...)
I find it funny that every day I learn more about security, the more INsecure I feel.
You would think that after learning about Mobile Hotspots, Personal VPN's and FDE, that I would be feeling much safer.
But with every turn, I see how complicated these things really are, and all of the places where "one slip" could really screw you and your data up!!!
I have the Hotspot and Personal VPN issue taken care of, and if I can just find a bullet-proof choice for FDE, then I think I am much better off than I was before.
But I don't want to blindly adopt something because some punk in an Apple store says, "Trust me, this can never fail" when it turns out that he doesn't know what in the hell he is talking about, and me and my data end up on the 6 O'clock news?!
Since I will be buying a new MacBook, should I just use the native FileVault 2, or should I venture off and try something like Symantec's PGP??
(FileVault 2 would likely be less system intensive, but I don't know if it is more secure...)