Technology in terms you understand. Sign up for the Confident Computing newsletter for weekly solutions to make your life easier. Click here and get The Ask Leo! Guide to Staying Safe on the Internet — FREE Edition as my thank you for subscribing!

How Can I Password Protect My Documents?

Keeping private things private

There are several options to keeping information private on your computer.
A photorealistic thumbnail image representing document security. The scene shows a computer screen with a Microsoft Word document open, indicating the process of password protecting the document. Beside it, a zip file icon represents password-protected archives. In the background, a virtual safe or vault symbolizes advanced encryption methods like VeraCrypt or Cryptomator. The image conveys the importance of strong encryption and backup for document security, suitable for a 16:9 aspect ratio.
(Image: DALL-E 3)
Question: I keep a daily journal in Microsoft Word on Windows. Is there a way to put a password on it, or lock it up somehow, so only I have access to it?

There are several approaches to keeping your private data private. Some good, some bad, and many in-between.

Let’s look at the list.

Become a Patron of Ask Leo! and go ad-free!

TL;DR:

Password protecting documents

To secure a document created by a tool that includes encryption, such as Microsoft Word, use the built-in encryption, otherwise zip files with password protection are equally secure. For multiple files, VeraCrypt or Cryptomator vaults make sense. Of course strong passwords or pass phrases are essential, as are regular unencrypted backups.

But first, back up

Whatever you do, regularly backup your uncompressed document in a safe and secure place. Many of these techniques have no recovery option should you lose your password, or should the file become corrupted for some reason.

As with all things: backup early, backup often.

Application encryption

This is probably the most pragmatic solution for Word. With the document open, hit the File menu, Info item, click on Protect Document, and then Encrypt with Password.

Encrypting a Word document
Encrypting a Word document. (Screenshot: askleo.com)

Unlike early versions of Microsoft Office apps, the encryption used today is strong and secure.

If you’re using a different application, do two things:

  • Check to see if that application has a password protection / encryption options.
  • Do a little research to see if it’s any good. “<Application name> encryption crack” might be a good search to start with.

Zip it

Many programs that create compressed archives also support password protection, the most ubiquitous being the “zip” file. While Windows itself seems to only be able to create unprotected zip files, tools like WinZip, 7-Zip, and others can.

Password protecting a file being added to a zip file.
Password protecting a file being added to a zip file using 7-Zip. (Screenshot: askleo.com)

Much like Microsoft Office, early versions of the zip format encryption was less than secure. Using a current zip utility to password protect a zip file will be appropriately secure.

The only “catch” is that while the data in a zip file will be encrypted, the filenames will still be visible. If that’s an issue, then encrypting the zip file a second time will hide that as well.

The good news is that decrypting zip files that have a password can be done natively in Windows without a third party tool.

More files, more power

In addition to zip files, another approach, particularly if you have multiple files to protect, is to use a VeraCrypt vault or Cryptomator.

In both cases the data is stored encrypted on disk, and is accessible only when the appropriate passphrase is provided. The files are made available in their unencrypted form by mounting a “virtual drive”. While your VeraCrypt vault might be “mysecretstuff.hc”, once mounted the unencrypted contents might appear as drive “E:”.

This is the technique I recommend for encrypting entire folders.

Gold standard?

So far everything I’ve covered is password based, and therefore highly dependent on the password or pass phrase you choose. Choose a weak password and no technology can keep someone from guessing it.

Another approach is to use public key encryption. Using a utility such as GPG (Gnu Privacy Guard), you can create public and private keys, and encrypt your files with a public key such that they can only be decrypted by someone holding the matching private key. This is industrial strength encryption — it’s the basis of security on the internet — but might perhaps be overkill for common use. It’s one approach to encrypting email messages, for example, and I cover it in a little more detail in How do I send encrypted email?.

Do this

  • If the application you’re using, like Word, supports strong encryption, that’s where I’d start if you have only a few documents.
  • If you have more documents, or the application you’re using doesn’t have encryption, then zip files are my next recommendation.
  • If you have lots of documents, or folders of documents then solutions such as VeraCrypt and BoxCryptor are perhaps most appropriate.

As you can see there are several approaches to choose from depending on your needs.

Something else to choose: Subscribe to Confident Computing! Less frustration and more confidence, solutions, answers, and tips in your inbox every week.

Leave a reply:

Before commenting please:

  • Read the article.
  • Comment on the article.
  • No personal information.
  • No spam.

Comments violating those rules will be removed. Comments that don't add value will be removed, including off-topic or content-free comments, or comments that look even a little bit like spam. All comments containing links and certain keywords will be moderated before publication.

I want comments to be valuable for everyone, including those who come later and take the time to read.