[dm-crypt] Possibility for safe Luks partition delete functionality

Heinz Diehl htd at fancy-poultry.org
Wed Dec 11 22:48:16 CET 2013


On 11.12.2013, Arno Wagner wrote: 

> Wit things like rubber-hise cryptoanalysis, you can still get
> at it. If the header is wiped, that becomes impossible.

Of course. You will then have the possibility to maybe safe your life
by giving the passphrase to the adversary, which would be impossible
if the header has been wiped.

In all other situations, simply cutting the power will be the fastest
way to secure your data in case of an "emergency".

It all boils down to the fact that WDE is very suitable to protect
your data in case a laptop gets stolen or a harddisk dies, but not
against criminal minds putting a threat on your life.

Furthermore, with solid state drives taking over the market, WDE
renders all of their advantages (high speed and low access time) to
zero.

Just my 5ø.



More information about the dm-crypt mailing list