CryptFS[18] is a cryptographic file system implemented at the virtual inode level using the abstraction of Stackable File Systems [5] and can be used on top of local or remote file systems. Like TCFS it uses the cipher block chaining encryption mode within a block (usually 4k o 8k long) and only provides Blowfish as encryption algorithm.
CryptFS is part of the FiST (File System Translator) [19] project developed by the same authors. FiST is a system that uses a high-level language to describe a file system and to generate the working implementation for the target operating system, thus improving portability.
We found no source code for CryptFS, so we could not compare it with TCFS. A performance comparison between CryptFS and (an older version of) TCFS is found in [18]. CryptFS does not ensure data integrity and does not allow unencrypted files on an encrypted file system. This has a non trivial impact on the performance as, for example, CryptFS needs not to check if the file is clean or encrypted, nor it needs to check the integrity of blocks upon reading. We also stress that there is no support for threshold group sharing of encrypted files.