...
...
...
...
...
...
...
...
...
...
...
Info | ||
---|---|---|
| ||
Copyright 2014 by Citrix Systems, Inc. This work is licensed under the Creative Commons Attribution 4.0 International License. To view a copy of this license, visit http://creativecommons.org/licenses/by/4.0/. |
Table of Contents
This page is for general data on encrypted VHDs. I'm starting out with simple things like how to manually create an encrypted VHD, how to load one directly using blktap2
and tap-ctl
and whatever else comes to mind. Feel free to add relevant content.
Supported Algorithms
To create an encrypted VHD we've extended vhd-util
with the key
command. It's pretty simple to use but first things first: we need an encryption key. We support what is typically referred to as AES-XTS-PLAIN. That means that AES is the encryption, XTS is the 'mode' for the AES algorithm, and PLAIN refers to the method by which initialization vectors are created. Since VHDs have a 2TB limit we use plain instead of plain64.
...