172:
1940:
2892:
1952:
2902:
1926:
155:
When LVM is used on an unlocked LUKS container, all underlying partitions (which are LVM logical volumes) can be encrypted with a single key. This is akin to splitting a LUKS container into multiple partitions. The LVM structure is not visible until the disk is
45:
LUKS implements a platform-independent standard on-disk format for use in various tools. This facilitates compatibility and interoperability among different programs and operating systems, and assures that they all implement
808:
keyslots are mostly similar to their predecessor, with the addition of different per-keyslot algorithms. Another type of key exists to allow redundancy in the case that a re-encryption process is interrupted.
104:. The multi-layer approach allows users to change their passphrase without re-encrypting the whole block device. Key slots can contain information to verify user passphrases or other types of keys.
81:, since the header allows multiple different passphrases to be used, with the ability to change and remove them. If the header is lost or corrupted, the device will no longer be decryptable.
972:
162:
When LUKS is used to encrypt LVM logical volumes, an encrypted volume can span multiple devices. The underlying LVM volume group is visible without decrypting the encrypted volumes.
1635:
129:
can be used as a backend for hashing, which supports all of its algorithms. It is up to the operating system vendor to choose the default algorithm. LUKS1 makes use of an
1990:
1640:
1665:
118:. Conversion between both versions of LUKS is possible in certain situations, but some features may not be available with LUKS1 such as Argon2. LUKS2 uses
171:
1886:
2509:
898:
2134:
1983:
1944:
1899:
1265:
272:
1233:
2265:
2684:
2739:
1909:
1650:
1625:
870:. These tools can also be used to add encryption to an existing unencrypted filesystem, or remove encryption from a block device.
2936:
2905:
2926:
2895:
1976:
1645:
1514:
1099:
179:
145:
1602:
1904:
2230:
2205:
1597:
2811:
2855:
2215:
1693:
1630:
488:
291:
1487:
1118:
919:
294:. (Formerly, this was possible with LibreCrypt, which currently has fundamental security holes, and which succeeded
1731:
1592:
381:
1425:
2609:
2245:
1736:
1361:
312:
Several Linux distributions allow the root device to be encrypted upon OS installation. These installers include
942:
2931:
2845:
2749:
2719:
2414:
2192:
2091:
1746:
1554:
199:
62:. The contents of the encrypted device are arbitrary, and therefore any filesystem can be encrypted, including
990:
2840:
2295:
332:
LUKS headers are backward compatible; newer versions of LUKS are able to read headers of previous versions.
111:
97:
1607:
2867:
2860:
2699:
2474:
1785:
1778:
1726:
1472:
778:
2872:
1570:
1198:
1034:
1004:
2080:
1874:
1703:
1161:
313:
234:
230:
187:
1442:
107:
There are two versions of LUKS, with LUKS2 featuring resilience to header corruption, and using the
2664:
2152:
2070:
2060:
2055:
1999:
1862:
1507:
317:
47:
2654:
2459:
2449:
1751:
1617:
1587:
1465:
67:
1482:
2422:
2303:
2050:
2035:
1559:
1379:
769:
LUKS2 devices begin with a binary header intended to allow recognition and fast detection by
84:
Encryption is done with a multi-layer approach. First, the block device is encrypted using a
2394:
1708:
1698:
1539:
1302:"Flaw in driver allows privilege escalation. Feedback wanted · Issue #38 · t-d-k/LibreCrypt"
321:
195:
175:
2714:
2644:
2574:
2503:
2469:
2454:
2366:
2333:
2308:
1894:
1655:
1047:
194:
of an operating system installation, which protects the operating system files from being
35:
1397:
2404:
2200:
1956:
1818:
1718:
1660:
1544:
1500:
1061:
260:
206:
191:
130:
71:
63:
1219:
2920:
2850:
2649:
2323:
1868:
1840:
1811:
1804:
1756:
1688:
301:
93:
1085:
125:
Available cryptographic algorithms depend on individual kernel support of the host.
70:
at the beginning of an encrypted volume, which allows up to 8 (LUKS1) or 32 (LUKS2)
2589:
2381:
2144:
2007:
1930:
1797:
1741:
1564:
1531:
241:
222:
134:
59:
1339:
2679:
2599:
2544:
2464:
1846:
1832:
1772:
1549:
1319:
1301:
74:
to be stored along with encryption parameters such as cipher type and key size.
20:
781:. Directly after the binary header comes the JSON area, containing the objects
38:
specification created by
Clemens Fruhwirth in 2004 and originally intended for
2785:
2729:
2659:
2534:
2529:
2479:
2444:
2437:
2399:
2389:
2328:
2114:
2025:
2015:
817:
276:
226:
214:
101:
2626:
2616:
2604:
2594:
2559:
2524:
2519:
2432:
2338:
2240:
2172:
2109:
2020:
1825:
1791:
1683:
284:
126:
1320:"Driver allows writing to arbitrary devices · Issue #39 · t-d-k/LibreCrypt"
1179:
248:
to allow a full disk encrypted system to be unlocked using a touch screen.
2801:
2775:
2704:
2564:
2554:
2539:
2484:
2361:
2313:
2280:
2255:
2235:
2220:
2065:
2030:
1968:
1852:
1149:
1139:
843:
774:
555:
295:
280:
78:
245:
2824:
2819:
2770:
2584:
2318:
2285:
2275:
2250:
2210:
2182:
2162:
2104:
2045:
2039:
1857:
1023:
287:
252:
1477:
1283:
2877:
2724:
2634:
2270:
2225:
2177:
2129:
1324:
1247:
551:
115:
108:
77:
The presence of this header is a major difference between LUKS and
2780:
2754:
2694:
2669:
2427:
2371:
2356:
2260:
2167:
2124:
2119:
2099:
1925:
1523:
1145:
770:
275:
for LUKS operates on Linux and is based on an enhanced version of
170:
39:
1024:"What Users Should Know About Full Disk Encryption Based on LUKS"
2569:
2348:
1266:"Servicing the Windows Subsystem for Linux (WSL) 2 Linux Kernel"
617:
511:
Payload offset (position of encrypted data) in 512 byte offsets
218:
119:
1972:
1496:
620:
of the partition (e.g. "504c9fa7-d080-4acf-a829-73227b48fb89")
2639:
2549:
2157:
1086:"How to encrypt a LUKS container using a smart card or token"
1234:"LUKS on LVM: encrypted logical volumes and secure backups"
862:
Re-encrypting a LUKS container can be done either with the
991:"How to Encrypt Hard Disk (partition) using LUKS in Linux"
701:
State of keyslot: Active=0x00AC71F3; Disabled=0x0000DEAD
1492:
820:
is the reference implementation of the LUKS frontend.
19:"LUKS" redirects here. For the American painter, see
221:). This is undertaken to prevent tampering with the
2833:
2810:
2794:
2763:
2738:
2678:
2625:
2502:
2413:
2380:
2347:
2294:
2191:
2143:
2090:
2079:
2006:
1885:
1765:
1717:
1676:
1616:
1580:
1530:
1100:"How LUKS works with Full Disk Encryption in Linux"
1362:"Calamares Installer Adds LUKS Encryption Support"
178:showing an option for automated partitioning with
1420:
1418:
1133:
1131:
973:"Chapter 12. Encrypting block devices using LUKS"
920:"LUKS On-Disk Format Specification Version 1.2.3"
133:technique called AFsplitter, allowing for secure
751:Number of anti-forensic stripes (Default: 4000)
1113:
1111:
1109:
88:This master key is encrypted with each active
1984:
1508:
797:(describes encrypted areas on the disk), and
8:
259:component can be used to encrypt individual
1193:
1191:
1189:
597:PBKDF2 master key iterations (Default: 10)
290:, LUKS-encrypted disks can be used via the
2087:
1991:
1977:
1969:
1515:
1501:
1493:
866:tool itself, or with a legacy tool called
773:, which also contains information such as
92:. User keys are derived from passphrases,
1380:"How to Encrypt Your Hard Disk in Ubuntu"
777:. All strings used in a LUKS2 header are
442:Cipher Algorithm (e.g. "twofish", "aes")
235:Full disk encryption#The boot key problem
1945:Free and open-source software portal
1022:Bossi, Simone; Visconti, Andrea (2015).
1005:"How to Encrypt Your Data with dm-crypt"
967:
965:
963:
674:
339:
1148:Administration and Privileged Commands
910:
1478:LibreCrypt: Implementation for Windows
1199:"dm-crypt/Encrypting an entire system"
1043:
1032:
899:Comparison of disk encryption software
465:Cipher mode (e.g. "cbc-essiv:sha256")
283:as the disk encryption backend. Under
838:To unlock an encrypted device, where
186:A common usage of LUKS is to provide
7:
2901:
1887:Professional related certifications
1426:"LUKS On-Disk Format Specification"
50:in a secure and documented manner.
1443:"CRYPTSETUP-REENCRYPT(8) Man page"
873:Both methods have similar syntax:
823:To encrypt a device with the path
384:{'L', 'U', 'K', 'S', 0xBA, 0xBE }
14:
1666:List of software package managers
1651:Security-focused operating system
1340:"DragonFly's Major Features List"
918:Fruhwirth, Clemens (2018-01-20).
577:PBKDF2 master key salt parameter
2900:
2891:
2890:
1951:
1950:
1938:
1924:
1473:Frequently Asked Questions (FAQ)
1062:"systemd-cryptenroll - ArchWiki"
413:LUKS Version (0x0001 for LUKS1)
190:, which involves encrypting the
1641:Distributions that run from RAM
114:by default, whereas LUKS1 uses
1360:Michael Larabel (8 May 2016).
943:"Encrypting drives using LUKS"
888:cryptsetup-reencrypt/dev/sda1
834:cryptsetupluksFormat/dev/sda1
804:The binary format for regular
1:
880:cryptsetupreencrypt/dev/sda1
1598:GNU/Linux naming controversy
853:cryptsetupopen/dev/sda1name
148:can be used alongside LUKS.
2856:Cryptographic hash function
1694:Linux Documentation Project
1636:Netbook-specific comparison
801:containing extra metadata.
715:PBKDF2 iteration parameter
491:(e.g. "sha1", "ripemd160")
489:Cryptographic hash function
292:Windows Subsystem for Linux
217:itself supports LUKS (e.g.
2953:
1593:Criticism of desktop Linux
1162:"Breaking LUKS Encryption"
1119:"on-disk-format-luks2.pdf"
213:) may be encrypted if the
66:. There is an unencrypted
58:LUKS is used to encrypt a
18:
2886:
1918:
1603:Tanenbaum–Torvalds debate
1270:Microsoft Developer Blogs
755:
666:
644:
345:
240:On mobile Linux systems,
233:cannot be encrypted (see
146:Logical Volume Management
2846:Timeline of cryptography
883:
875:
848:
829:
273:reference implementation
267:Operating system support
16:Disk encryption software
2937:Linux security software
2841:Outline of cryptography
2812:Anti–computer forensics
1220:"Arch with LVM on LUKS"
977:Red Hat Customer Portal
779:null-terminated strings
676:Format of each keyslot
205:On a Linux system, the
112:key derivation function
28:Linux Unified Key Setup
2927:Cryptographic software
2868:Homomorphic encryption
2861:List of hash functions
2000:Cryptographic software
1779:Free Software Magazine
1709:Linux User Group (LUG)
1042:Cite journal requires
729:PBKDF2 salt parameter
227:first stage bootloader
183:
122:as a metadata format.
2873:End-to-end encryption
174:
1704:Linux Mark Institute
1308:. 30 September 2015.
1236:. 12 September 2014.
1102:. 25 September 2021.
868:cryptsetup-reencrypt
740:Start sector of key
531:Number of key bytes
298:, formerly DoxBox.)
251:For systems running
231:EFI system partition
200:unauthorized parties
188:full disk encryption
167:Full disk encryption
1488:LUKS2 Specification
1483:LUKS1 Specification
1011:. 22 November 2022.
993:. 27 February 2019.
677:
342:
48:password management
2460:Facebook Messenger
1631:Distributions list
1626:General comparison
1588:Criticism of Linux
1386:. 13 January 2017.
1248:"Home Directories"
1066:wiki.archlinux.org
675:
340:
184:
2914:
2913:
2764:Service providers
2498:
2497:
2304:Check Point VPN-1
1966:
1965:
1328:. 7 October 2015.
1168:. 21 August 2020.
785:(configuration),
762:
761:
673:
672:
308:Installer support
2944:
2904:
2903:
2894:
2893:
2742:operating system
2740:Security-focused
2688:
2513:
2088:
1993:
1986:
1979:
1970:
1954:
1953:
1943:
1942:
1941:
1931:Linux portal
1929:
1928:
1900:Linux Foundation
1699:Linux Foundation
1517:
1510:
1503:
1494:
1469:
1468:
1466:Official website
1451:
1450:
1439:
1433:
1432:
1430:
1422:
1413:
1412:
1410:
1408:
1394:
1388:
1387:
1384:Make Tech Easier
1376:
1370:
1369:
1357:
1351:
1350:
1348:
1346:
1336:
1330:
1329:
1316:
1310:
1309:
1298:
1292:
1291:
1280:
1274:
1273:
1272:. 16 April 2021.
1262:
1256:
1255:
1244:
1238:
1237:
1230:
1224:
1223:
1216:
1210:
1209:
1207:
1205:
1195:
1184:
1183:
1176:
1170:
1169:
1158:
1152:
1143:
1142:
1135:
1126:
1125:
1123:
1115:
1104:
1103:
1096:
1090:
1089:
1088:. 20 April 2014.
1082:
1076:
1075:
1073:
1072:
1058:
1052:
1051:
1045:
1040:
1038:
1030:
1028:
1019:
1013:
1012:
1001:
995:
994:
987:
981:
980:
969:
958:
957:
955:
953:
939:
933:
932:
930:
929:
924:
915:
887:
879:
869:
865:
852:
841:
833:
826:
807:
800:
796:
792:
788:
784:
722:
708:
694:
678:
630:
607:
587:
567:
541:
521:
501:
478:
472:
455:
449:
432:
429:
423:
420:
403:
400:
394:
391:
371:
368:
362:
359:
343:
322:Debian-Installer
261:home directories
258:
212:
176:Debian-Installer
137:and protection.
2952:
2951:
2947:
2946:
2945:
2943:
2942:
2941:
2932:Disk encryption
2917:
2916:
2915:
2910:
2882:
2829:
2806:
2790:
2759:
2741:
2734:
2682:
2674:
2645:Java Anon Proxy
2621:
2507:
2506:
2504:Disk encryption
2494:
2470:Google Messages
2455:Signal Protocol
2409:
2376:
2343:
2290:
2187:
2139:
2082:
2075:
2002:
1997:
1967:
1962:
1939:
1937:
1923:
1914:
1881:
1761:
1713:
1672:
1656:Package manager
1612:
1576:
1555:Booting process
1526:
1521:
1464:
1463:
1460:
1455:
1454:
1441:
1440:
1436:
1428:
1424:
1423:
1416:
1406:
1404:
1398:"PartmanCrypto"
1396:
1395:
1391:
1378:
1377:
1373:
1359:
1358:
1354:
1344:
1342:
1338:
1337:
1333:
1318:
1317:
1313:
1300:
1299:
1295:
1290:. 27 July 2022.
1282:
1281:
1277:
1264:
1263:
1259:
1246:
1245:
1241:
1232:
1231:
1227:
1218:
1217:
1213:
1203:
1201:
1197:
1196:
1187:
1178:
1177:
1173:
1160:
1159:
1155:
1138:
1137:
1136:
1129:
1124:. 7 March 2024.
1121:
1117:
1116:
1107:
1098:
1097:
1093:
1084:
1083:
1079:
1070:
1068:
1060:
1059:
1055:
1041:
1031:
1026:
1021:
1020:
1016:
1003:
1002:
998:
989:
988:
984:
971:
970:
961:
951:
949:
941:
940:
936:
927:
925:
922:
917:
916:
912:
907:
895:
890:
889:
885:
882:
881:
877:
867:
863:
860:
855:
854:
850:
839:
836:
835:
831:
824:
815:
805:
798:
794:
790:
786:
782:
767:
720:
706:
692:
668:592 Bytes total
656:
634:
628:
611:
605:
591:
585:
571:
565:
545:
539:
525:
519:
505:
499:
482:
476:
470:
459:
453:
447:
436:
430:
427:
421:
418:
407:
401:
398:
392:
389:
375:
369:
366:
360:
357:
338:
330:
310:
304:supports LUKS.
269:
256:
225:. However, the
210:
169:
143:
96:security keys,
72:encryption keys
64:swap partitions
56:
36:disk encryption
24:
17:
12:
11:
5:
2950:
2948:
2940:
2939:
2934:
2929:
2919:
2918:
2912:
2911:
2909:
2908:
2898:
2887:
2884:
2883:
2881:
2880:
2875:
2870:
2865:
2864:
2863:
2858:
2851:Hash functions
2848:
2843:
2837:
2835:
2834:Related topics
2831:
2830:
2828:
2827:
2822:
2816:
2814:
2808:
2807:
2805:
2804:
2798:
2796:
2792:
2791:
2789:
2788:
2783:
2778:
2773:
2767:
2765:
2761:
2760:
2758:
2757:
2752:
2746:
2744:
2736:
2735:
2733:
2732:
2727:
2722:
2717:
2712:
2707:
2702:
2697:
2691:
2689:
2676:
2675:
2673:
2672:
2667:
2662:
2657:
2652:
2647:
2642:
2637:
2631:
2629:
2623:
2622:
2620:
2619:
2614:
2613:
2612:
2602:
2597:
2592:
2587:
2582:
2577:
2572:
2567:
2562:
2557:
2552:
2547:
2542:
2537:
2532:
2527:
2522:
2516:
2514:
2500:
2499:
2496:
2495:
2493:
2492:
2489:
2488:
2487:
2482:
2477:
2472:
2467:
2462:
2452:
2447:
2442:
2441:
2440:
2435:
2425:
2419:
2417:
2411:
2410:
2408:
2407:
2402:
2397:
2392:
2386:
2384:
2378:
2377:
2375:
2374:
2369:
2364:
2359:
2353:
2351:
2345:
2344:
2342:
2341:
2336:
2331:
2326:
2321:
2316:
2311:
2306:
2300:
2298:
2292:
2291:
2289:
2288:
2283:
2278:
2273:
2268:
2263:
2258:
2253:
2248:
2243:
2238:
2233:
2228:
2223:
2218:
2213:
2208:
2203:
2201:BBM Enterprise
2197:
2195:
2189:
2188:
2186:
2185:
2180:
2175:
2170:
2165:
2160:
2155:
2149:
2147:
2141:
2140:
2138:
2137:
2132:
2127:
2122:
2117:
2112:
2107:
2102:
2096:
2094:
2085:
2077:
2076:
2074:
2073:
2068:
2063:
2058:
2053:
2048:
2043:
2033:
2028:
2023:
2018:
2012:
2010:
2004:
2003:
1998:
1996:
1995:
1988:
1981:
1973:
1964:
1963:
1961:
1960:
1948:
1934:
1919:
1916:
1915:
1913:
1912:
1907:
1902:
1897:
1895:CompTIA Linux+
1891:
1889:
1883:
1882:
1880:
1879:
1872:
1865:
1860:
1855:
1850:
1843:
1838:
1837:
1836:
1822:
1819:Linux Magazine
1815:
1808:
1801:
1794:
1789:
1782:
1775:
1769:
1767:
1763:
1762:
1760:
1759:
1754:
1749:
1744:
1739:
1734:
1729:
1723:
1721:
1715:
1714:
1712:
1711:
1706:
1701:
1696:
1691:
1686:
1680:
1678:
1674:
1673:
1671:
1670:
1669:
1668:
1663:
1661:Package format
1653:
1648:
1643:
1638:
1633:
1628:
1622:
1620:
1614:
1613:
1611:
1610:
1605:
1600:
1595:
1590:
1584:
1582:
1578:
1577:
1575:
1574:
1567:
1562:
1557:
1552:
1547:
1542:
1536:
1534:
1528:
1527:
1522:
1520:
1519:
1512:
1505:
1497:
1491:
1490:
1485:
1480:
1475:
1470:
1459:
1458:External links
1456:
1453:
1452:
1434:
1414:
1389:
1371:
1352:
1331:
1311:
1293:
1275:
1257:
1239:
1225:
1211:
1185:
1171:
1153:
1127:
1105:
1091:
1077:
1053:
1044:|journal=
1014:
996:
982:
959:
934:
909:
908:
906:
903:
902:
901:
894:
891:
884:
876:
859:
856:
849:
830:
814:
811:
766:
763:
760:
759:
757:48 Bytes total
753:
752:
749:
746:
742:
741:
738:
735:
731:
730:
727:
724:
717:
716:
713:
710:
703:
702:
699:
696:
689:
688:
685:
682:
671:
670:
664:
663:
660:
657:
654:
651:
647:
646:
642:
641:
638:
635:
632:
626:
622:
621:
615:
612:
609:
603:
599:
598:
595:
592:
589:
583:
579:
578:
575:
572:
569:
563:
559:
558:
549:
546:
543:
537:
533:
532:
529:
526:
523:
517:
513:
512:
509:
506:
503:
497:
493:
492:
486:
483:
480:
474:
467:
466:
463:
460:
457:
451:
444:
443:
440:
437:
434:
425:
415:
414:
411:
408:
405:
396:
386:
385:
379:
376:
373:
364:
354:
353:
350:
347:
337:
334:
329:
328:On-disk format
326:
309:
306:
268:
265:
244:has developed
207:boot partition
192:root partition
168:
165:
164:
163:
160:
157:
153:
142:
139:
131:anti-forensics
55:
52:
15:
13:
10:
9:
6:
4:
3:
2:
2949:
2938:
2935:
2933:
2930:
2928:
2925:
2924:
2922:
2907:
2899:
2897:
2889:
2888:
2885:
2879:
2876:
2874:
2871:
2869:
2866:
2862:
2859:
2857:
2854:
2853:
2852:
2849:
2847:
2844:
2842:
2839:
2838:
2836:
2832:
2826:
2823:
2821:
2818:
2817:
2815:
2813:
2809:
2803:
2800:
2799:
2797:
2793:
2787:
2784:
2782:
2779:
2777:
2774:
2772:
2769:
2768:
2766:
2762:
2756:
2753:
2751:
2748:
2747:
2745:
2743:
2737:
2731:
2728:
2726:
2723:
2721:
2718:
2716:
2713:
2711:
2708:
2706:
2703:
2701:
2698:
2696:
2693:
2692:
2690:
2686:
2681:
2677:
2671:
2668:
2666:
2663:
2661:
2658:
2656:
2653:
2651:
2648:
2646:
2643:
2641:
2638:
2636:
2633:
2632:
2630:
2628:
2624:
2618:
2615:
2611:
2608:
2607:
2606:
2603:
2601:
2598:
2596:
2593:
2591:
2588:
2586:
2583:
2581:
2578:
2576:
2573:
2571:
2568:
2566:
2563:
2561:
2558:
2556:
2553:
2551:
2548:
2546:
2543:
2541:
2538:
2536:
2533:
2531:
2528:
2526:
2523:
2521:
2518:
2517:
2515:
2511:
2505:
2501:
2490:
2486:
2483:
2481:
2478:
2476:
2473:
2471:
2468:
2466:
2463:
2461:
2458:
2457:
2456:
2453:
2451:
2448:
2446:
2443:
2439:
2436:
2434:
2431:
2430:
2429:
2426:
2424:
2421:
2420:
2418:
2416:
2412:
2406:
2403:
2401:
2398:
2396:
2393:
2391:
2388:
2387:
2385:
2383:
2379:
2373:
2370:
2368:
2365:
2363:
2360:
2358:
2355:
2354:
2352:
2350:
2346:
2340:
2337:
2335:
2332:
2330:
2327:
2325:
2324:SoftEther VPN
2322:
2320:
2317:
2315:
2312:
2310:
2307:
2305:
2302:
2301:
2299:
2297:
2293:
2287:
2284:
2282:
2279:
2277:
2274:
2272:
2269:
2267:
2264:
2262:
2259:
2257:
2254:
2252:
2249:
2247:
2244:
2242:
2239:
2237:
2234:
2232:
2229:
2227:
2224:
2222:
2219:
2217:
2214:
2212:
2209:
2207:
2206:Bouncy Castle
2204:
2202:
2199:
2198:
2196:
2194:
2193:TLS & SSL
2190:
2184:
2181:
2179:
2176:
2174:
2171:
2169:
2166:
2164:
2161:
2159:
2156:
2154:
2151:
2150:
2148:
2146:
2142:
2136:
2133:
2131:
2128:
2126:
2123:
2121:
2118:
2116:
2113:
2111:
2108:
2106:
2103:
2101:
2098:
2097:
2095:
2093:
2089:
2086:
2084:
2083:communication
2078:
2072:
2069:
2067:
2064:
2062:
2059:
2057:
2054:
2052:
2049:
2047:
2044:
2041:
2037:
2034:
2032:
2029:
2027:
2024:
2022:
2019:
2017:
2014:
2013:
2011:
2009:
2008:Email clients
2005:
2001:
1994:
1989:
1987:
1982:
1980:
1975:
1974:
1971:
1959:
1958:
1949:
1947:
1946:
1935:
1933:
1932:
1927:
1921:
1920:
1917:
1911:
1908:
1906:
1903:
1901:
1898:
1896:
1893:
1892:
1890:
1888:
1884:
1878:
1877:
1873:
1871:
1870:
1869:Revolution OS
1866:
1864:
1861:
1859:
1856:
1854:
1851:
1849:
1848:
1844:
1842:
1841:Linux Outlaws
1839:
1835:
1834:
1830:
1829:
1828:
1827:
1823:
1821:
1820:
1816:
1814:
1813:
1812:Linux Journal
1809:
1807:
1806:
1805:Linux Gazette
1802:
1800:
1799:
1795:
1793:
1790:
1788:
1787:
1783:
1781:
1780:
1776:
1774:
1771:
1770:
1768:
1764:
1758:
1757:Linux malware
1755:
1753:
1750:
1748:
1745:
1743:
1740:
1738:
1735:
1733:
1730:
1728:
1725:
1724:
1722:
1720:
1716:
1710:
1707:
1705:
1702:
1700:
1697:
1695:
1692:
1690:
1689:Linux Counter
1687:
1685:
1682:
1681:
1679:
1677:Organizations
1675:
1667:
1664:
1662:
1659:
1658:
1657:
1654:
1652:
1649:
1647:
1644:
1642:
1639:
1637:
1634:
1632:
1629:
1627:
1624:
1623:
1621:
1619:
1618:Distributions
1615:
1609:
1608:SCO and Linux
1606:
1604:
1601:
1599:
1596:
1594:
1591:
1589:
1586:
1585:
1583:
1581:Controversies
1579:
1573:
1572:
1568:
1566:
1563:
1561:
1558:
1556:
1553:
1551:
1548:
1546:
1543:
1541:
1538:
1537:
1535:
1533:
1529:
1525:
1518:
1513:
1511:
1506:
1504:
1499:
1498:
1495:
1489:
1486:
1484:
1481:
1479:
1476:
1474:
1471:
1467:
1462:
1461:
1457:
1448:
1444:
1438:
1435:
1427:
1421:
1419:
1415:
1403:
1399:
1393:
1390:
1385:
1381:
1375:
1372:
1367:
1363:
1356:
1353:
1341:
1335:
1332:
1327:
1326:
1321:
1315:
1312:
1307:
1303:
1297:
1294:
1289:
1285:
1279:
1276:
1271:
1267:
1261:
1258:
1253:
1249:
1243:
1240:
1235:
1229:
1226:
1221:
1215:
1212:
1200:
1194:
1192:
1190:
1186:
1181:
1175:
1172:
1167:
1163:
1157:
1154:
1151:
1147:
1144: –
1141:
1140:cryptsetup(8)
1134:
1132:
1128:
1120:
1114:
1112:
1110:
1106:
1101:
1095:
1092:
1087:
1081:
1078:
1067:
1063:
1057:
1054:
1049:
1036:
1025:
1018:
1015:
1010:
1006:
1000:
997:
992:
986:
983:
978:
974:
968:
966:
964:
960:
948:
944:
938:
935:
921:
914:
911:
904:
900:
897:
896:
892:
874:
871:
858:Re-encrypting
857:
847:
846:device name:
845:
828:
821:
819:
812:
810:
802:
780:
776:
772:
764:
758:
754:
750:
747:
744:
743:
739:
736:
733:
732:
728:
725:
719:
718:
714:
711:
705:
704:
700:
697:
691:
690:
686:
683:
680:
679:
669:
665:
661:
658:
652:
649:
648:
643:
639:
636:
627:
624:
623:
619:
616:
613:
604:
601:
600:
596:
593:
584:
581:
580:
576:
573:
564:
561:
560:
557:
553:
550:
547:
538:
535:
534:
530:
527:
518:
515:
514:
510:
507:
498:
495:
494:
490:
487:
484:
475:
469:
468:
464:
461:
452:
446:
445:
441:
438:
426:
417:
416:
412:
409:
397:
388:
387:
383:
380:
377:
365:
356:
355:
351:
348:
344:
341:LUKS1 Header
335:
333:
327:
325:
323:
319:
315:
307:
305:
303:
302:DragonFly BSD
299:
297:
293:
289:
286:
282:
278:
274:
266:
264:
262:
257:systemd-homed
254:
249:
247:
243:
238:
236:
232:
228:
224:
220:
216:
208:
203:
201:
197:
196:tampered with
193:
189:
181:
177:
173:
166:
161:
158:
154:
151:
150:
149:
147:
141:LUKS with LVM
140:
138:
136:
132:
128:
123:
121:
117:
113:
110:
105:
103:
99:
95:
91:
87:
82:
80:
75:
73:
69:
65:
61:
53:
51:
49:
43:
41:
37:
33:
29:
22:
2709:
2680:File systems
2590:Private Disk
2579:
1955:
1936:
1922:
1875:
1867:
1845:
1831:
1824:
1817:
1810:
1803:
1798:Linux Format
1796:
1784:
1777:
1752:Range of use
1569:
1532:Linux kernel
1446:
1437:
1405:. Retrieved
1401:
1392:
1383:
1374:
1365:
1355:
1343:. Retrieved
1334:
1323:
1314:
1305:
1296:
1287:
1284:"LibreCrypt"
1278:
1269:
1260:
1251:
1242:
1228:
1214:
1202:. Retrieved
1180:"AFsplitter"
1174:
1165:
1156:
1094:
1080:
1069:. Retrieved
1065:
1056:
1035:cite journal
1017:
1008:
999:
985:
976:
950:. Retrieved
946:
937:
926:. Retrieved
913:
872:
861:
837:
822:
816:
803:
768:
756:
687:Description
667:
382:Magic number
352:Description
331:
324:, and more.
311:
300:
270:
250:
242:postmarketOS
239:
223:Linux kernel
204:
185:
144:
135:data erasure
124:
106:
89:
85:
83:
76:
60:block device
57:
44:
31:
27:
25:
2795:Educational
2600:Sentry 2020
2545:DriveSentry
2465:Google Allo
2071:Thunderbird
1847:Linux Voice
1833:Ubuntu User
1786:Full Circle
1773:DistroWatch
1646:Lightweight
1560:Kernel oops
1550:Linux-libre
1545:Linus's law
1402:Debian Wiki
947:Fedora Docs
554:master key
198:or read by
159:LUKS on LVM
152:LVM on LUKS
102:smart cards
86:master key.
54:Description
21:George Luks
2921:Categories
2786:NordLocker
2730:Tahoe-LAFS
2720:Rubberhose
2660:RetroShare
2535:Cryptoloop
2530:CrossCrypt
2510:Comparison
2480:TextSecure
2438:ChatSecure
2400:RetroShare
2390:Bitmessage
2329:strongSwan
2115:ChatSecure
2026:Claws Mail
2016:Apple Mail
1166:eForensics
1071:2023-11-22
928:2021-09-23
905:References
864:cryptsetup
818:Cryptsetup
662:Keyslot 8
659:(48 Bytes)
640:Keyslot 1
637:(48 Bytes)
277:cryptsetup
215:bootloader
156:decrypted.
2627:Anonymity
2617:VeraCrypt
2605:TrueCrypt
2595:Scramdisk
2560:FileVault
2525:BitLocker
2520:BestCrypt
2433:Cryptocat
2339:WireGuard
2241:MatrixSSL
2211:BoringSSL
2173:SecureCRT
2135:Profanity
2110:Centericq
2021:Autocrypt
1826:LinuxUser
1792:Linux.com
1684:LinuxChix
825:/dev/sda1
775:checksums
684:Data type
349:Data type
314:Calamares
285:Microsoft
127:Libgcrypt
2896:Category
2802:CrypTool
2776:Tresorit
2705:eCryptfs
2665:Ricochet
2565:FreeOTFE
2555:eCryptfs
2540:dm-crypt
2485:WhatsApp
2362:Linphone
2314:Openswan
2281:TeamNote
2266:SChannel
2256:mbed TLS
2236:LibreSSL
2221:cryptlib
2153:Dropbear
2066:Sylpheed
2031:Enigmail
1957:Category
1876:The Code
1863:Phoronix
1853:LugRadio
1737:Embedded
1727:Adopters
1719:Adoption
1447:man7.org
1366:Phoronix
893:See also
813:Examples
795:segments
787:keyslots
748:uint32_t
737:uint32_t
712:uint32_t
698:uint32_t
594:uint32_t
556:checksum
528:uint32_t
508:uint32_t
410:uint16_t
318:Ubiquity
296:FreeOTFE
281:dm-crypt
279:, using
90:user key
79:dm-crypt
2906:Commons
2825:BusKill
2820:USBKill
2771:Freenet
2655:Vidalia
2610:History
2585:PGPDisk
2491:SimpleX
2450:Session
2445:Proteus
2319:OpenVPN
2309:Hamachi
2286:wolfSSL
2276:stunnel
2251:OpenSSL
2183:wolfSSH
2163:OpenSSH
2105:BitlBee
2051:Outlook
2046:Kontact
2040:Gpg4win
1905:Red Hat
1858:LWN.net
1732:Desktop
1540:History
1252:systemd
842:is the
791:digests
288:Windows
253:systemd
246:osk-sdl
182:on LUKS
34:) is a
2878:S/MIME
2725:StegFS
2635:GNUnet
2475:Signal
2423:Matrix
2271:SSLeay
2226:GnuTLS
2178:WinSCP
2130:Kopete
2081:Secure
1910:Ubuntu
1747:Mobile
1742:Gaming
1325:GitHub
1306:GitHub
1288:GitHub
1150:Manual
1009:Linode
844:mapped
799:tokens
783:config
681:Offset
552:PBKDF2
346:Offset
255:, the
229:or an
116:PBKDF2
109:Argon2
68:header
2781:Wuala
2755:Qubes
2750:Tails
2695:EncFS
2670:Wickr
2428:OMEMO
2395:Briar
2372:Zfone
2357:Jitsi
2261:BSAFE
2216:Botan
2168:PuTTY
2125:Jitsi
2120:climm
2100:Adium
1766:Media
1571:more…
1524:Linux
1429:(PDF)
1407:6 May
1345:6 May
1204:6 May
1146:Linux
1122:(PDF)
1027:(PDF)
952:6 May
923:(PDF)
806:luks2
771:blkid
765:LUKS2
336:LUKS1
211:/boot
94:FIDO2
40:Linux
2715:PEFS
2710:LUKS
2685:List
2580:LUKS
2575:geli
2570:GBDE
2367:Jami
2349:ZRTP
2334:Tinc
2231:JSSE
1409:2022
1347:2022
1206:2022
1048:help
954:2022
840:name
726:char
618:UUID
614:char
574:char
548:char
485:char
462:char
439:char
378:char
271:The
219:GRUB
120:JSON
98:TPMs
32:LUKS
26:The
2700:EFS
2650:Tor
2640:I2P
2550:E4M
2415:DRA
2405:Tox
2382:P2P
2296:VPN
2246:NSS
2158:lsh
2145:SSH
2092:OTR
2061:PGP
2056:p≡p
2036:GPG
1565:Tux
655:hex
653:220
650:544
633:hex
625:208
610:hex
602:168
590:hex
582:164
570:hex
562:132
544:hex
536:112
524:hex
516:108
504:hex
496:104
481:hex
458:hex
435:hex
406:hex
374:hex
237:).
180:LVM
100:or
2923::
1445:.
1417:^
1400:.
1382:.
1364:.
1322:.
1304:.
1286:.
1268:.
1250:.
1188:^
1164:.
1130:^
1108:^
1064:.
1039::
1037:}}
1033:{{
1007:.
975:.
962:^
945:.
886:#
878:#
851:#
832:#
827::
793:,
789:,
745:44
734:40
645:…
631:D0
608:A8
588:A4
568:84
542:70
522:6C
502:68
479:48
473:72
456:28
450:40
320:,
316:,
263:.
202:.
42:.
2687:)
2683:(
2512:)
2508:(
2042:)
2038:(
1992:e
1985:t
1978:v
1516:e
1509:t
1502:v
1449:.
1431:.
1411:.
1368:.
1349:.
1254:.
1222:.
1208:.
1182:.
1074:.
1050:)
1046:(
1029:.
979:.
956:.
931:.
723:8
721:0
709:4
707:0
695:0
693:0
629:0
606:0
586:0
566:0
540:0
520:0
500:0
477:0
471:0
454:0
448:0
433:8
431:0
428:0
424:8
422:0
419:0
404:6
402:0
399:0
395:6
393:0
390:0
372:0
370:0
367:0
363:0
361:0
358:0
209:(
30:(
23:.
Text is available under the Creative Commons Attribution-ShareAlike License. Additional terms may apply.