[dm-crypt] cryptsetup with native PKCS#11 support

Krzysztof Rutecki krzysztof at kress-net.com
Mon May 20 09:22:47 CEST 2013


Since today all modifications to cryptsetup are my own usage only. I will clean a code and open repo somewhere (GitHub probably ). 
And yes, it will be open source. I have few crypto cards (CyrptoTech, ACS and Gemalto) and two readers. At beginning its ok. 
Soon I will get few tokens (USB devices, in operation it looks like reader and card all-in-one). As my modification are only extensions 
I plan to release it in to versions: integrated with latest version of cryptsetup and patch only. We will see... 

What is more user friendly Google Code or GitHub? 

Krzysztof Rutecki 

On Sun, May 19, 2013 at 3:02 PM, Krzysztof Rutecki < krzysztof at kress-net.com > wrote: 

Hi guys 

I`m new here. The purpose of this email is PKCS#11 support in cryptsetup I`m working on. 

In short: I need to encrypt disk with LUKS and store key on PKCS#11 compatible device. I now 
there is a lot of example how to do this using gnupgp or openssl. The goal is to have key only on token, 
retrieve upon 'luksOpen' operation based on PIN only. 

i want to add the same functionality in my project hosted at: http://code.google.com/p/zulucrypt/ but i dont have the hardware to implement it on. 

are you making a proprietary or a FOSS solution?,if FOSS,where do you host your sources? 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.saout.de/pipermail/dm-crypt/attachments/20130520/d6bac3af/attachment.html>

More information about the dm-crypt mailing list