dm-crypt – kernel device-mapper crypto target

dm-crypt is a transparent disk encryption subsystem in the Linux kernel that provides a generic way to create virtual layers of block devices that can do different things on top of real block devices like striping, concatenation, mirroring, snapshotting, and more.

Features include:

  • Support advanced modes of operation, such as XTS, LRW and ESSIV (see disk encryption theory), in order to avoid watermarking attacks.
  • Encrypt whole disks (including removable media), partitions, software RAID volumes, logical volumes, as well as files.
  • Provides transparent encryption of block devices using the new Linux 2.6 cryptoapi.
  • Offers similar functionality to cryptoloop but with clear code and a more flexible configuration.
  • Highly flexible.
  • Can be used for encrypting any disk-backed file systems supported by the operating system, as well as swap space.
  • Encrypt RAID volumes and LVM physical volumes.
  • Configured to provide pre-boot authentication through an initrd.

Developer: Christophe Saout
License: GNU GPL v2

Return to Disk Encryption Home Page

Want to find more awesome open source software? Check out our award winning open source software directory featuring more than 20,000 open source apps.
Share this article

Share your Thoughts

This site uses Akismet to reduce spam. Learn how your comment data is processed.