Steps to Enable Data Encryption#

By default, user data encryption is disabled on the NVIDIA DriveOS Linux. Follow these steps to enable:

  1. Flash the DriveOS Linux file system by using the instructions from the SDK Flashing section and boot the system.

  2. After booting the board, ensure that the /dev/vblkdev50 partition is visible in cat /proc/partition.

  3. Enable EFS-related systemd service by running the following commands:

    • sudo su

systemctl enable
        nv_cpu_encrypt_run_once.service
  1. Reboot the board.

  2. Check the output of the mount command.

Note that /home should be mounted on the /dev/mapper/home-encrypted/ partition.