[linux-lvm] [PATCH] crypto for LVM2
freemyer-ml at NorcrossGroup.com
Tue May 4 23:34:53 UTC 2004
On Tue, 2004-05-04 at 18:20, Alasdair G Kergon wrote:
> On Mon, May 03, 2004 at 07:20:20PM -0400, Ben Slusky wrote:
> > The encryption key is not stored with the metadata, as that would
> > kinda defeat the purpose of encryption.
> That depends on the usage - some people may be happy to keep the
> key in the metadata on removable media.
I haven't kept up with how encrypted filesystems are typically used.
I think there is value in having a key to the computer that is used to
"start" it, but that can be locked in a safe most of the time.
That way if a thief tries to steal the entire computer, they end-up with
nothing but encrypted data.
I've even had some people tell me that HIPAA's security rule will
require something like that at doctor's offices. (ie. security rule
goes into effect april 2005.)
More information about the linux-lvm