[dm-crypt] LUKS encryption standards

Bennett, Justin justin.bennett at lmco.com
Wed Feb 29 17:23:08 CET 2012


Hello all,

At my work, we have a requirement from our customer to provide total hard drive encryption on pieces of our system that are considered mobile (laptops, for instance).  Previously, we have been using a commercial product to achieve this, but that product has since been discontinued in favor of a hardware based product that the company is now using.

I'd like to use the LUKS-based encryption that is available during the installation of RHEL 5 (the OS we'll be using going forward) but I need to know some specific information regarding the encryption standards that are met by LUKS.  Specifically, the customer requires that the encryption meet the standards set forth by the United States Dept. of Commerce in FIPS-140-2 (http://en.wikipedia.org/wiki/FIPS_140-2).

I'm wondering if someone can tell me whether the current cryptsetup or dm-crypt offerings support this or not.  I tried looking through a list of validated cryptographic modules kept by the NIST, but I didn't have any luck.

Any help you can offer would be greatly appreciated.

Thank you,
Justin Bennett
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.saout.de/pipermail/dm-crypt/attachments/20120229/34719faf/attachment.html>


More information about the dm-crypt mailing list