[dm-crypt] Switch to XTS mode for LUKS in cryptsetup in 1.6.0 (Was Re: [ANNOUNCE] cryptsetup 1.6.0-rc1)

Arno Wagner arno at wagner.name
Fri Jan 4 22:56:27 CET 2013


On Fri, Jan 04, 2013 at 08:14:42PM +0100, Milan Broz wrote:
> On 01/04/2013 07:55 PM, Romain Francoise wrote:
> > Milan Broz <gmazyland at gmail.com> writes:
> > 
> >> Any serious objections to not do that now?
> > 
> > How does it compare to cbc in terms of (real-world) performance?
> 
> It is slower but on recent systems it shouldn't not be bottleneck
> (even with fast storage).
> 
> I really prefer security to performance here.
> 
> But anyway, there is now benchmark command to test it.
> 
> An example (on my 3 year old Thinkpad x201 notebook with AES-NI):
> 
> # Tests are approximate using memory only (no storage IO).
> #  Algorithm | Key |  Encryption |  Decryption
>      aes-cbc   128b   789.0 MiB/s  1899.0 MiB/s
>      aes-cbc   256b   595.0 MiB/s  1445.0 MiB/s
>      aes-xts   256b   572.0 MiB/s   571.4 MiB/s
>      aes-xts   512b   465.0 MiB/s   467.0 MiB/s
> 
> (I think XTS got some more optimization in recent kernel, this is from 3.6.)
> 
> You can try it yourself, just run "cryptsetup benchmark" with 1.6.0-rc1,
> perhaps we will need some new FAQ entry here.

Yes, I think so. I will write one.

Arno
-- 
Arno Wagner,     Dr. sc. techn., Dipl. Inform.,    Email: arno at wagner.name
GnuPG: ID: CB5D9718  FP: 12D6 C03B 1B30 33BB 13CF  B774 E35C 5FA1 CB5D 9718
----
One of the painful things about our time is that those who feel certainty
are stupid, and those with any imagination and understanding are filled
with doubt and indecision. -- Bertrand Russell


More information about the dm-crypt mailing list