LUKS is the upcoming standard for Linux hard disk encryption. By providing a standard on-disk-format, it does not only facilitate compatibility among distributions, but also provide secure management of multiple user passwords. In contrast to existing solution, LUKS stores all setup necessary setup information in the partition header, enabling the user to transport or migrate his data seamlessly.
While LUKS is a standard on-disk format, there is also a reference implementation. LUKS for dm-crypt is implemented in an enhanced version of cryptsetup.
LUKS was designed according to TKS1, a template design developed in [TKS1] for secure key setup. LUKS closely reassembles the structure recommended in the TKS1 paper, but also adds meta data for cipher setup management and LUKS also supports for multipe keys/passphrases.
There are several sub project, trying to bring LUKS to your desktop. Most efforts concentrate or built apon cryptsetup-luks, a LUKSified version of cryptsetup. cryptsetup is used to conveniantely setup dm-crypt managed block devices under Linux. cryptsetup-luks is a superset in terms of functionality, adding all necessary operation to enable the user to manage a LUKS partition. This effort is further documented under LUKS on dm-crypt.
LUKS on Gentoo uses cryptsetup-luks to make Gentoo the first Linux distribution that can be run and installed seamlessly with LUKS, and (without disrespect of other crypto project) is believed to deliver the best user experience.
LUKS is the first cross-plattform standard for transparent hard disk encryption. Thanks to FreeOTFE, you get LUKS for Win32. Of course, you have to use a file-system on your LUKS partition that both OS understand. For instance, fat. For more compatibility stuff see, LUKS for the masses.
For LUKS related questions, please use the dm-crypt mailing list, dm-crypt@saout.de. If you want to subscribe just send an empty mail to dm-crypt-subscribe@saout.de. You can also mail me in private, althought I prefer to use the public and archived mailing list.