Keyfile (EN)

Concept

File containing keys for automatic mounting of LUKS volumes

Keyfile

A keyfile is a file that contains one or more keys for LUKS encryption and enables automatic mounting without manual password entry. This file can be filled with random data and then added to the LUKS volume with the 'cryptsetup luksAddKey' command. For system security, it is important that the keyfile is stored in a protected location and properly removed when not in use. The use of keyfiles is particularly useful for automated systems or containers that need to start without manual interaction.

Workflow

flowchart TD     A[Create Keyfile] --> B[Initialize LUKS Volume]     B --> C[cryptsetup luksAddKey]     C --> D[Add Keyfile to Volume]     D --> E[Store Keyfile in secure location]     E --> F[System with Keyfile automount]     F --> G[Remove Keyfile when not in use]

In Context

Typically used together with LUKS, cryptsetup and /etc/crypttab
Related to: LUKS, Encryption, Passphrase, automatic mounting
Example use case: Automated starting of containers or servers without manual input

Quelle: AI Generated