According to the fedora documentation:
«Block device encryption encrypts/decrypts the data transparently as it is written/read from block devices, the underlying block device sees only encrypted data.
To mount encrypted block devices the sysadmin (or user, depending on context) must provide a passphrase to activate the decryption key.
Encryption provides additional security beyond existing OS security mechanisms in that it protects the device’s contents even if it has been physically removed from the system. Some systems require the encryption key to be the same as for decryption, and other systems require a specific key for encryption and specific second key for enabling decryption.«
What LUKS means?
LUKS (Linux Unified Key Setup) is a specification for block device encryption. It establishes an on-disk format for the data, as well as a passphrase/key management policy.
So, In this entry I’m going to show how I enabled for one partition my disk.
Seguir leyendo