With BitLocker the hardware encryption was enabled by default, which is not what is being proposed. Even now it is still possible to configure BitLocker to use hardware encryption. It's up to the user to decide whether the performance benefits are worth trusting the hardware vendor and their proprietary implementation of data encryption.
On Fri, Jul 12, 2024 at 6:27 PM Vitaly Zaitsev via devel <[email protected]> wrote: > > On 12/07/2024 17:54, Aoife Moloney wrote: > > Add optional support for using native hardware encryption on TCG OPAL2 > > compliant drives when configuring disk encryption in the installer. > > The hardware encryption implementation can't be verified and can't be > trusted[1]. Even Microsoft has switched BitLocker to software > implementation[2]. > > [1] > https://www.zdnet.com/article/flaws-in-self-encrypting-ssds-let-attackers-bypass-disk-encryption/ > > [2] > https://www.pcworld.com/article/398130/bitlocker-windows-built-in-encryption-tool-no-longer-trusts-your-ssds-hardware-protection.html > > -- > Sincerely, > Vitaly Zaitsev ([email protected]) > > -- > _______________________________________________ > devel mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedoraproject.org/archives/list/[email protected] > Do not reply to spam, report it: > https://pagure.io/fedora-infrastructure/new_issue -- _______________________________________________ devel mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
