eCryptfs (Enterprise Cryptographic Filesystem) is a package of disk encryption software for Linux. Its implementation is a POSIX-compliant[1] filesystem-level encryption layer, aiming to offer functionality similar to that of GnuPG at the operating system level,[2] and has been part of the Linux kernel since version 2.6.19. The eCryptfs package has been included in Ubuntu since version 9.04 and is being used for implementing Ubuntu's encrypted home directory feature.[3]

Original author(s)Michael Halcrow, IBM Linux Technology Center, Erez Zadok
Initial releaseNovember 30, 2006 (2006-11-30)
Stable release
111 / May 2, 2016 (2016-05-02)
Written inC
Operating systemLinux
PlatformLinux kernel
Typefilesystem, encryption
LicenseGPL v2+

eCryptfs is derived from Erez Zadok's Cryptfs.[4] It uses a variant of the OpenPGP file format for encrypted data, extended to allow random access, storing cryptographic metadata (including a per-file randomly generated session key) with each individual file.[2]

It also encrypts file and directory names which makes them internally longer (average one third). The reason is it needs to uuencode the encrypted names to eliminate unwanted characters in the resulting name. This lowers the maximum usable byte name length of the original file system entry depending on the used file system (this can lead to four times fewer characters for example for Asian utf-8 file names).

See also


  1. "About the project". 2012. Retrieved 2018-11-15.
  2. Halcrow, Michael Austin (2005). eCryptfs: An Enterprise-class Encrypted Filesystem for Linux (PDF). Proc. Linux Symposium. Archived from the original (PDF) on 2014-02-01. Retrieved 2018-11-15.
  3. Ian Nicholson (2014-11-24). "Ubuntu CommunityHelpWiki: EncryptedHome". Retrieved 2018-11-15.
  4. "eCryptfs Enterprise Cryptographic Filesystem".
This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.