On 12/07/2024 17:54, Aoife Moloney wrote:
Add optional support for using native hardware encryption on TCG OPAL2 compliant drives when configuring disk encryption in the installer.
The hardware encryption implementation can't be verified and can't be trusted[1]. Even Microsoft has switched BitLocker to software implementation[2].
[1] https://www.zdnet.com/article/flaws-in-self-encrypting-ssds-let-attackers-bypass-disk-encryption/
[2] https://www.pcworld.com/article/398130/bitlocker-windows-built-in-encryption-tool-no-longer-trusts-your-ssds-hardware-protection.html
-- Sincerely, Vitaly Zaitsev (vitaly@xxxxxxxxxxxxxx) -- _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
