With BitLocker the hardware encryption was enabled by default, which is not what is being proposed. Even now it is still possible to configure BitLocker to use hardware encryption. It's up to the user to decide whether the performance benefits are worth trusting the hardware vendor and their proprietary implementation of data encryption.
On Fri, Jul 12, 2024 at 6:27 PM Vitaly Zaitsev via devel <devel@lists.fedoraproject.org> wrote: > > On 12/07/2024 17:54, Aoife Moloney wrote: > > Add optional support for using native hardware encryption on TCG OPAL2 > > compliant drives when configuring disk encryption in the installer. > > The hardware encryption implementation can't be verified and can't be > trusted[1]. Even Microsoft has switched BitLocker to software > implementation[2]. > > [1] > https://www.zdnet.com/article/flaws-in-self-encrypting-ssds-let-attackers-bypass-disk-encryption/ > > [2] > https://www.pcworld.com/article/398130/bitlocker-windows-built-in-encryption-tool-no-longer-trusts-your-ssds-hardware-protection.html > > -- > Sincerely, > Vitaly Zaitsev (vit...@easycoding.org) > > -- > _______________________________________________ > devel mailing list -- devel@lists.fedoraproject.org > To unsubscribe send an email to devel-le...@lists.fedoraproject.org > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org > Do not reply to spam, report it: > https://pagure.io/fedora-infrastructure/new_issue -- _______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
