Strong Cryptography in the Linux Kernel

In 2.5, strong cryptography has been incorporated into the kernel. This inclusion was a result of several motivating factors: remove duplicated code, harmonize IPv6/IPSec, and the usual crypto-paranoia. The authors will present the history of the Cryptographic API, its current state, what kernel facilities are currently using it, which ones should be using it, plus the new future applications including:

  1. Hardware and assembly crypto drivers
  2. Kernel module code-signing
  3. Hardware random number generation
  4. Filesystem encryption, including swap space.


Download PDF.