TIL [the French government may have broken encryption on a LUKS-encrypted laptop](https://nantes.indymedia.org/posts/87395/une-lettre-divan-enferme-a-la-prison-de-villepinte-perquisitions-et-disques-durs-dechiffres/) with a "greater than 20 character" password in April 2023. * https://nantes.indymedia.org/posts/87395/une-lettre-divan-enferme-a-la-prison-de-villepinte-perquisitions-et-disques-durs-dechiffres/ When upgrading TAILS today, I saw their announcement changing LUKS from PBKDF2 to Argon2id. * https://tails.boum.org/security/argon2id/index.en.html The release announcement above has some interesting back-of-the-envelope calculations for the wall-time required to crack a master key from a LUKS keyslot with PBKDF2 vs Argon2id. And they also link to Matthew Garrett's article, which describes [how to manually upgrade](https://mjg59.dreamwidth.org/66429.html) your (non-TAILS) LUKS header to Argon2id. * https://mjg59.dreamwidth.org/66429.html