Bug#482092: XTS and LRW mode of operation

To: Alberto <api2000@inwind.it>
Cc: Bug#482092 <482092@bugs.debian.org>
Subject: Bug#482092: XTS and LRW mode of operation
From: Zdenek Kaspar <zkaspar82@gmail.com>
Date: Tue, 14 Oct 2008 14:10:58 +0200
Message-id: <[🔎] 48F48C52.3070409@gmail.com>
Reply-to: Zdenek Kaspar <zkaspar82@gmail.com>, 482092@bugs.debian.org
In-reply-to: <[🔎] 30844.4698780193-sendEmail@poseidon>
References: <[🔎] 30844.4698780193-sendEmail@poseidon>

Alberto napsal(a):
> *Zdenek Kaspar* wrote:
>> IMO it's not good to hide any changes in crypto from the user.
> 
> I agree with you.
> 
>> Even doubling the key without further notice. Maybe some
>> hint/help/screen option to explain XTS-based mode.
> 
> At least in meantime (and before of lenny release) why don't
> offer only few and safe predefined options?
> 
>> I don't see any advantages here. XTS is claimed as more secure..
>> But still both modes have kernel status = EXPERIMENTAL. Therefore CBC 
>> should stay as "less-secure/more-stable" default option for the system 
>> encryption.
> 
> Also in 2.6.26 (and .27)?
> 

Both options are EXPERIMENTAL:
CRYPTO_GF128MUL for almost 2 years and CRYPTO_XTS for 1 year.

As you mentioned in your next mail it would be nice to pickup some
predefined options with XTS for ppl who want to use it..

Reply to:

References:
- Bug#482092: XTS and LRW mode of operation
  - From: "Alberto" <api2000@inwind.it>

Prev by Date: Re: preseeding partitioning with lvm (lenny beta2)
Next by Date: Re: preseeding partitioning with lvm (lenny beta2)
Previous by thread: Bug#482092: XTS and LRW mode of operation
Next by thread: Bug#482092: XTS and LRW mode of operation
Index(es):
- Date
- Thread