Community
Search Options
Search Options
Log in
Skip to main content (Press Enter).
Sign in
Skip auxiliary navigation (Press Enter).
Power
Topic areas
Automation with Power
Business Continuity
Enterprise Infrastructure as a Service
IBM i
ISV Solutions
Modernization with IBM Power
Open Source
Operating Systems
Power Developer eXchange
Power Global
Power Security
Programming Languages
Virtualization
User groups
Events
IBM TechXchange Conference
Upcoming Power Events
IBM TechXchange Webinars
All IBM TechXchange Community Events
Participate
Gamification Program
Getting Started
Community Manager's Welcome
Post to Forum
Share a Resource
Share Your Expertise
Blogging on the Community
Connect with Power Users
All IBM TechXchange Community Users
Resources
IBM TechXchange Group
IBM Champions
IBM Cloud Support
IBM Documentation
IBM Support
IBM Technology Zone
IBM Training
TechXchange Conference
IBM TechXchange Conference 2024
Marketplace
Marketplace
IBM Power
Connect, learn, share, and engage with IBMPower.
Join / Log in
Skip main navigation (Press Enter).
Toggle navigation
Search Options
Enterprise Linux
Operating Systems
View Only
Group Home
Discussion
60
Library
13
Blogs
12
Events
0
Members
634
Share
Remotely Wrapping Encrypted Volume Passphrases with HPCS for LUKS
By
George Wilson
posted
Tue October 04, 2022 03:58 PM
0
Like
The IBM Linux Technology Center Security Team has developed a proof-of-concept integration between Linux Unified Key Setup (LUKS) and IBM Hyper Protect Crypto Services (HPCS) Key Protect called
HPCS for LUKS.
The integration package facilitates the establishment of a remote wrapping key in HPCS that is in turn used to encrypt locally stored LUKS passphrases. At boot time, a systemd unit fetches the remote wrapping key, decrypts the LUKS passphrases, populates the kernel keyring with the passphrases, and subsequent systemd processing decrypts encrypted volumes and mounts them transparently. The primary use case for
HPCS for LUKS
is to effect a remote "kill switch" for encrypted volumes via user-supplied key material. To learn more, please see the article I cowrote with Sandeep Batta here:
https://developer.ibm.com/tutorials/protect-luks-encryption-keys-with-ibm-cloud-hyper-protect-crypto-services/
0 comments
467 views
Permalink
IBM Community Home
Browse
Discussions
Resources
Groups
Events
IBM TechXchange Conference 2023
IBM Community Webinars
All IBM Community Events
Participate
Gamification Program
Community Manager's Welcome
Post to Forum
Share a Resource
Blogging on the Community
All IBM Community Users
Resources
Community Front Porch
IBM Champions
IBM Cloud Support
IBM Documentation
IBM Support
IBM Technology Zone
IBM Training
Marketplace
Marketplace
Power
Topic areas
Automation with Power
Business Continuity
Enterprise Infrastructure as a Service
IBM i
ISV Solutions
Modernization with IBM Power
Open Source
Operating Systems
Power Developer eXchange
Power Global
Power Security
Programming Languages
Virtualization
User groups
Events
IBM TechXchange Conference
Upcoming Power Events
IBM TechXchange Webinars
All IBM TechXchange Community Events
Participate
Gamification Program
Getting Started
Community Manager's Welcome
Post to Forum
Share a Resource
Share Your Expertise
Blogging on the Community
Connect with Power Users
All IBM TechXchange Community Users
Resources
IBM TechXchange Group
IBM Champions
IBM Cloud Support
IBM Documentation
IBM Support
IBM Technology Zone
IBM Training
TechXchange Conference
IBM TechXchange Conference 2024
Marketplace
Marketplace
Copyright © 2020 IBM Corporation. All rights reserved.
Powered by Higher Logic