Steps to Enable Data Encryption

By default, user data encryption is disabled on the NVIDIA DriveOS Linux. Follow these steps to enable:

1. Flash the DriveOS Linux file system by using the instructions from the SDK Flashing section and boot the system.

2. After booting the board, ensure that the /dev/vblkdev50 partition is visible in cat /proc/partition.

3. Enable EFS-related systemd service by running the following commands:

   • sudo su

systemctl enable
        nv_cpu_encrypt_run_once.service

4. Reboot the board.

5. Check the output of the mount command.

Note that /home should be mounted on the /dev/mapper/home-encrypted/ partition.