Hi.
Does, or will, GELI support anything similar to the "AF-Splitter" found in LUKS? Its purpose is to mitigate the recovery of key material from remapped bad sectors of HDDs or SSDs. It stores some additional random data on the disk and xor-encrypts the encrypted key material with stuff derived from the random data, instead of just storing the encrypted key on disk. This decreases the probability that all data required to recover the encrypted key would physically remain somewhere on the disk even if it's apparently deleted or overwritten.
https://gitlab.com/cryptsetup/cryptsetup/wikis/LUKS-standard/on-disk-format.pdf
Does, or will, GELI support anything similar to the "AF-Splitter" found in LUKS? Its purpose is to mitigate the recovery of key material from remapped bad sectors of HDDs or SSDs. It stores some additional random data on the disk and xor-encrypts the encrypted key material with stuff derived from the random data, instead of just storing the encrypted key on disk. This decreases the probability that all data required to recover the encrypted key would physically remain somewhere on the disk even if it's apparently deleted or overwritten.
https://gitlab.com/cryptsetup/cryptsetup/wikis/LUKS-standard/on-disk-format.pdf