Improving Full Disk Encryption

Disk encryption in Linux is based on userspace cryptsetup project, LUKS on-disk format, and kernel device-mapper dm-crypt driver. The primary focus of this project is also data integrity protection, either in combination with encryption (authentication encryption) or standalone using dm-integrity and dm-verity kernel driver.

This long-term project focuses not only on improvements based on research and state-of-the-art applied to real Linux distributions (our code is in the upstream repository and part of Red Hat products).

As research activity, we also provide an independent and open-source implementation of other disk encryption formats like TrueCrypt/VeraCrypt or BitLocker, implemented through native Linux dm-crypt. The project is a joint cooperation of Red Hat Czech and CRoCS laboratory at Faculty of informatics, Masaryk University.

We support students to join us, either as research interns or leading bachelor or diploma theses. Some successfully finished theses in project include:


Research Area(s)


Project Resources