© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
Volume (master) key digest is there only to verify validity of the key.
The digest iteration count is not relevant for the security of LUKS in normal situation.
This iteration (slowdown) for digest will only help if the volume key was generated by a flawed RNG, where brute-force is possible. (For proper RNG it is impossible to brute force key even without iterations.)
Moreover, if you know some plaintext on device, attacker will use different trick (I think it is described in linked paper): You try to decrypt device and check that plaintext (for example filesytem magic string). This bypasses digest completely and cost is onle one cipher decryption step per try (much cheaper than digest calculation).
IOW: the digest iteration count is not important, only the iteration count in keyslot is, this one slows down password dictionary and brute-force attacks.