Wikipedia

Filesystem-level encryption

This is an old revision of this page, as edited by Intgr (talk | contribs) at 12:21, 26 September 2006 (Create list of encrypting filesystems). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

Filesystem-level encryption is a form of disk encryption where individual files or directories are encrypted by the file system, in contrast to full disk encryption where the entire partition or disk, where the file system resides, is encrypted.

The advantages of filesystem-level encryption include more flexible file-based key management with public-key encryption and the fact that cryptographic keys are only loaded when a file using them is opened. Unlike full disk encryption, filesystem-level encryption does not typically encrypt filesystem metadata, such as the directory structure, file names, modification timestamps or sizes.

Notable filesystems that support this kind of encryption include the Encrypting File System layer of NTFS.

See also

 

This cryptography-related article is a stub. You can help Wikipedia by expanding it.

Retrieved from "https://en.wikipedia.org/w/index.php?title=Filesystem-level_encryption&oldid=77891876"