Is there a way how to encrypt whole SD card so no one can see into my SD card? I saw that ZYMBIT project do this stuff. Is it possible to run BalenaOS with ZYMBIT? If no, is there a way how to add support for ZYMBIT?
File system encryption is tricky as most devices do not support any form of hardware-level encryption, so the decryption keys would have to be stored in an accessible area of the device, which means its not really that secure.
Adding ZYMBIT to BalenaOS is indeed doable. I’ll check with the rest of the balenaOS team to see if that’s on the radar, otherwise keep in mind that BalenaOS is an open source project (https://www.balena.io/os/) and we would welcome these kinds of community contributions!