[dm-crypt] The future of disk encryption with LUKS2

f-dm-c at media.mit.edu f-dm-c at media.mit.edu
Mon Feb 8 21:31:05 CET 2016


    > Date: Mon, 8 Feb 2016 17:41:43 +0100
    > From: Arno Wagner <arno at wagner.name>

    > The thing is that in a typical PC, power drops relatively 
    > slowly and disks work non-seeking for a lower voltage
    > that the thresholds. Add to that that a single sector
    > write takes less than 1ms (probably much less), and
    > you get ample time to finish a write in progress.

If the data has already made it all the way into the drive itself,
that may be valid, but it's very dangerous to make such assumptions
in general, and you can't necessarily know the timing of the power
failure vs when the data makes it to the disk, much less the platters.

http://zork.net/~nick/mail/why-reiserfs-is-teh-sukc

And new technologies may change this---not just SSDs, but modern
high-capacity drives that must rewrite many, many sectors to write
one.  (Yes, I know this also argues that those headers should be
far away from each other.  So be it.  If such scattered headers
don't prevent resizing, I don't care.  Except maybe for secure wipe.)


More information about the dm-crypt mailing list