Stay organized with collections
Save and categorize content based on your preferences.
Google Distributed Cloud (GDC) air-gapped appliance uses Linux Unified Key Setup (LUKS) based disk
encryption with Yubikeys.
For each GDC air-gapped appliance, three or more Yubikeys are shipped separately
to the customer. The Yubikeys are FIPS 140-2 certified. For more information on the Yubikey model, see
https://www.yubico.com/product/yubikey-5-nano-fips/.
The USB ports on each server blade of the device are enabled with USB dongles.
The Yubikeys are inserted into the server machines as part of the device setup.
After the installation completes, the Yubikeys must stay in the server until you
remove them for transport or you
return the system. Ensure that the Yubikeys
are transferred separately from the appliance to protect against server theft.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-06-12 UTC."],[[["Google Distributed Cloud (GDC) air-gapped appliances utilize LUKS-based disk encryption in conjunction with Yubikeys."],["Each GDC air-gapped appliance is shipped with a minimum of three FIPS 140-2 certified Yubikeys."],["Yubikeys must remain in the server machines after installation, except when removing them for transport or returning the system."],["The Yubikeys, inserted via USB dongles on the server blades, should be transferred separately from the appliance for security reasons."]]],[]]
