Skip to Main content Skip to Navigation
Conference papers

Practical Cryptographic Data Integrity Protection with Full Disk Encryption

Abstract : Full Disk Encryption (FDE) has become a widely used security feature. Although FDE can provide confidentiality, it generally does not provide cryptographic data integrity protection. We introduce an algorithm-agnostic solution that provides both data integrity and confidentiality protection at the disk sector layer. Our open-source solution is intended for drives without any special hardware extensions and is based on per-sector metadata fields implemented in software. Our implementation has been included in the Linux kernel since the version 4.12.
Document type :
Conference papers
Complete list of metadatas

Cited literature [38 references]  Display  Hide  Download
Contributor : Hal Ifip <>
Submitted on : Thursday, February 21, 2019 - 5:01:12 PM
Last modification on : Thursday, February 21, 2019 - 5:02:59 PM
Long-term archiving on: : Wednesday, May 22, 2019 - 7:07:38 PM


 Restricted access
To satisfy the distribution rights of the publisher, the document is embargoed until : 2021-01-01

Please log in to resquest access to the document


Distributed under a Creative Commons Attribution 4.0 International License



Milan Brož, Mikuláš Patočka, Vashek Matyáš. Practical Cryptographic Data Integrity Protection with Full Disk Encryption. 33th IFIP International Conference on ICT Systems Security and Privacy Protection (SEC), Sep 2018, Poznan, Poland. pp.79-93, ⟨10.1007/978-3-319-99828-2_6⟩. ⟨hal-02023745⟩



Record views