geli is ablock device-layerdisk encryption system written forFreeBSD, introduced in version 6.0. It uses theGEOM disk framework. It was designed and implemented by Paweł Jakub Dawidek.[1]
geli was initially written to protect data on a user's computer in situations of physical theft of hardware, disallowing the thief access to the protected data. This has changed over time with the introduction of optional data authentication/integrity verification.[2]
geli allows the key to consist of several information components (a user entered passphrase, random bits from a file, etc.), permits up to 2 keys (a user key and a company key, for example),[3] and can attach a provider with a random, one-time key. The user passphrase is strengthened withPKCS#5.[4]
The geli utility is different fromgbde in that it offers different features and uses a different scheme for doing cryptographic work. It supports the crypto framework within FreeBSD, allowing hardware cryptographic acceleration if available, as well as supporting more cryptographic algorithms (currentlyAES,Triple DES,Blowfish andCamellia) and data authentication/integrity verification viaMD5,SHA1,RIPEMD160,SHA256,SHA384 orSHA512 asHash Message Authentication Codes.[4]
| Email clients | |||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Secure communication |
| ||||||||||||||
| Disk encryption (Comparison) | |||||||||||||||
| Anonymity | |||||||||||||||
| File systems(List) | |||||||||||||||
| Security-focused operating system | |||||||||||||||
| Service providers | |||||||||||||||
| Educational | |||||||||||||||
| Anti–computer forensics | |||||||||||||||
| Related topics | |||||||||||||||
 | This cryptography-related article is astub. You can help Wikipedia byexpanding it. |
