Sto cercando le opzioni raccomandate per cryptsetup per creare SSD completamente crittografato ( SanDisk SSD U100 128GB
), che achive:
Timing O_DIRECT disk reads: 1476 MB in 3.00 seconds = 491.81 MB/sec
Timing buffered disk reads: 1420 MB in 3.00 seconds = 473.01 MB/sec
Il mio benchmark mi mostra il miglior codice:
# cryptsetup benchmark
# Tests are approximate using memory only (no storage IO).
PBKDF2-sha1 103696 iterations per second
PBKDF2-sha256 59904 iterations per second
PBKDF2-sha512 38235 iterations per second
PBKDF2-ripemd160 85111 iterations per second
PBKDF2-whirlpool 47216 iterations per second
# Algorithm | Key | Encryption | Decryption
aes-cbc 128b 133.2 MiB/s 432.0 MiB/s
serpent-cbc 128b 18.1 MiB/s 67.3 MiB/s
twofish-cbc 128b 39.3 MiB/s 73.0 MiB/s
aes-cbc 256b 99.6 MiB/s 337.7 MiB/s
serpent-cbc 256b 18.1 MiB/s 66.9 MiB/s
twofish-cbc 256b 39.4 MiB/s 72.6 MiB/s
aes-xts 256b 376.6 MiB/s 375.0 MiB/s
serpent-xts 256b 69.0 MiB/s 66.5 MiB/s
twofish-xts 256b 71.1 MiB/s 72.2 MiB/s
aes-xts 512b 297.0 MiB/s 300.1 MiB/s
serpent-xts 512b 69.6 MiB/s 66.6 MiB/s
twofish-xts 512b 71.9 MiB/s 72.7 MiB/s
Ma forse potresti suggerire alcune opzioni, che aumenterebbero le mie prestazioni e la sicurezza. La mia CPU è: Intel(R) Core(TM) i7-2677M CPU @ 1.80GHz
e supporta AES-NI ( aes
cpu flag).
Grazie