OpenSUSE Expanding Encryption Options For Its Installer

Written by Michael Larabel in SUSE on 10 October 2019 at 01:52 AM EDT. 7 Comments
SUSE
While Ubuntu developers are busy adding experimental ZFS support to their installer, the SUSE developers working on their YaST installer are working on offering better security options for their platform by beefing up the encryption capabilities at install-time.

YaST has like most Linux distributions out there offered basic encryption options at install-time if wanting to deploy the Linux distribution to an encrypted LVM. With openSUSE Leap 15.2 (and SUSE Linux Enterprise 15 SP2) as well as openSUSE Tumbleweed, they are adding more advanced encryption options to complement the functionality provided already for years.

Among the advanced encryption options to be offered include supporting swap encryption with a random key (re-encrypting the swap device on each boot with a randomly generated password), swap encryption using protected AES keys, and more pervasive encryption of data volumes. Some of these SUSE/openSUSE encryption improvements are focused on their IBM s390 support.

SUSE is also exploring adding other encryption options -- including general support for LUKS2 replacing LUKS1. More details on their latest YaST encryption work via the openSUSE blog.
Related News
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week