Kernel key management
Posted Nov 22, 2006 19:21 UTC (Wed) by arjan
In reply to: Kernel key management
Parent article: Kernel key management
technically it's "Safer" to encrypt the device as a whole, there can't then be leaked blocks from files that moved all over the disk..
HOwever encrypting files is more convenient for several things: for example if you need to legally remove all data from a certain person... all you need to do is destroy his key now, and that takes care automatically of all your backup tapes too ;)
to post comments)