dm-crypt
dm-crypt is a transparent disk encryption subsystem
in the Linux 2.6 kernel that provides a generic way to create virtual
layers of block devices that can do different things on top of real
block devices like striping, concatenation, mirroring, snapshotting,
and more.
Features include:
- Support advanced modes of operation, such as XTS, LRW and
ESSIV (see disk encryption theory), in order to avoid watermarking
attacks
- Encrypt whole disks (including removable media),
partitions, software RAID volumes, logical volumes, as well as files
- Provides transparent encryption of block devices using the
new Linux 2.6 cryptoapi
- Offers similar functionality to cryptoloop but with clear
code and a more flexible configuration
- Highly flexible
- Can be used for encrypting any disk-backed file systems
supported by the operating system, as well as swap space
- Encrypt RAID volumes and LVM physical volumes
- Configured to provide pre-boot authentication through an
initrd
Return
to Disk Encryption Home Page
Last Updated Saturday, May 26 2012 @ 09:02 AM EDT
| 
