I found some instructions here about luks header backup using cryptsetup luksHeaderBackup --header-backup-file <file> <device>
but I am not sure whether I will need it to do it from a live environment? If I can do it from the live environment, then I can make keep it in a vercrypt volume.
Another thing was mentioned in that article was,
First, disks die. The rate for well-treated (!) disk is about 5% per year, which is high enough to worry about. There is some indication that this may be even worse for some SSDs. This applies both to LUKS and plain dm-crypt partitions.
Second, for LUKS, if anything damages the LUKS header or the key-stripe area then decrypting the LUKS device can become impossible.
I backed up header, but what is key-stripe area, and how can I back up that? My goal is to avoid downtime of the system.
I also see suggestion about key-slot backup but how can I backup key-slots without backing up the entire dm-crypt?