Dm-crypt

From NovaOrdis Knowledge Base
Revision as of 07:07, 24 December 2018 by Ovidiu (talk | contribs) (→‎plain)
Jump to navigation Jump to search

Externa

Internal

Overview

dm-crypt is standard device mapper encryption functionality provided by the Linux kernel. The management of dm-crypt is done with cryptsetup userspace utility. dm-crypt allows for the following block-device encryption modes: LUKS and plain.

Block-Device Encryption Types

LUKS

LUKS dm-crypt mode, used by default, is an additional convenience layer that stores all of the needed setup information for dm-crypt on the encrypted disk itself and abstracts partition and key management in an attempt to improve eas of use and cryptographic security.

plain

"plain" dm-crypt mode is the original kernel functionality and does not employ the convenience layer.

cryptsetup

cryptsetup is the userspace utility used to manage the dm-crypt encryption functionality.


Retrieved from "https://kb.novaordis.com/index.php?title=Dm-crypt&oldid=53397"