Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 26 Jul 2012 08:54:20 -0700
From:      Michael Sierchio <>
To:        Ivan Voras <>
Subject:   Re: geli - selecting cipher
Message-ID:  <>
In-Reply-To: <juropu$hvb$>
References:  <> <> <> <juropu$hvb$>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
On Thu, Jul 26, 2012 at 8:47 AM, Ivan Voras <> wrote:

> You didn't get an answer because in security, the answer depends on
> exact circumstances of use. The short answer is that if you don't have a
> specific adversary you need to protect your data from, I'd say that
> GELI's CBC is good enough for you.

The specific adversary that XEX / XTS etc. is designed to protect
against is probably unrealistically strong - someone who can write
arbitrary data to raw disk sectors and ask to have them decrypted
(chosen ciphertext attack), etc.

If you don't need to detect modifications/insertions/deletions that
don't go through the GELI layer, I would be perfectly comfortable with
AES-CTR mode - it is many times faster than any of the above methods.

- M

Want to link to this message? Use this URL: <>