this post was submitted on 15 Jul 2024

62 points (100.0% liked)

Linux

4924 readers

99 users here now

A community for everything relating to the linux operating system

Also check out !linux_memes@programming.dev

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 1 year ago

MODERATORS

Ategon@programming.dev

anzo@programming.dev

dwraf_of_ignorance@programming.dev

62

Fedora 41 Change Proposal: Self Encrypting Drives Support in the Installer (self-contained) (discussion.fedoraproject.org)

submitted 1 month ago by lemmee_in@lemm.ee to c/linux@programming.dev

5 comments fedilink hide all child comments

A new proposal to have optional support for native hardware encryption (TCG OPAL2 standard)

you are viewing a single comment's thread
view the rest of the comments

[–] henfredemars@infosec.pub 3 points 1 month ago (1 children)

How do we know that the hardware encrypts the data correctly? Can we observe ciphertext?

[–] devfuuu@lemmy.world 4 points 1 month ago (1 children)

I wouldn't trust any drive that offers the feature. We already know that those that have that thing to delete files or wtv it is called doesn't work well, I would not touch with a foot long stick anything related to crypto on the hardware level.

[–] 4am@lemm.ee 2 points 1 month ago

For a drive with throwaway data where performance might be a concern but data protect is a nice-to-have it’s fine. Think games or a cache disk for art workstations