DigiNews

Summary

The article explains how data confidentiality is being addressed for embedded Linux devices under the Cyber Resilience Act. It compares storage encryption options such as block-level dm-crypt and filesystem-level fscrypt/eCryptfs, discusses their use cases, strengths, and limitations, and emphasizes the need for authentication, integrity, and hardware-backed key storage. It concludes with a practical recommendation to combine full-disk encryption with application-level encryption and to benchmark configurations on target hardware.