Content deleted Content added
m →Criticism: Copy edit ▸ Redaction of 11-year-old tag and diction slightly modded in recognition. Tags: Mobile edit Mobile app edit Android app edit App select source |
Rescuing 1 sources and tagging 1 as dead.) #IABot (v2.0.9.5 |
||
| (One intermediate revision by one other user not shown) | |||
Line 17:
HDD FDE is made by HDD vendors using the [[Opal Storage Specification|OPAL]] and Enterprise standards developed by the [[Trusted Computing Group]].<ref>{{cite web |url=http://www.trustedcomputinggroup.org/solutions/data_protection |title=Trusted Computing Group Data Protection page |publisher=Trustedcomputinggroup.org |date= |access-date=2013-08-06 |url-status=dead |archive-url=https://archive.today/20120915073808/http://www.trustedcomputinggroup.org/solutions/data_protection |archive-date=2012-09-15 }}</ref> [[Key management]] takes place within the hard disk controller and encryption keys are 128 or 256 [[bit]] [[Advanced Encryption Standard]] (AES) keys. [[Authentication]] on power up of the drive must still take place within the [[Central processing unit|CPU]] via either a [[software]] [[pre-boot authentication]] environment (i.e., with a [[Disk encryption software|software-based full disk encryption]] component - hybrid full disk encryption) or with a [[BIOS]] password. In additions, some SEDs support [[IEEE 1667]] standard.<ref>{{Cite web |title=The Value of Crucial Hardware Encryption |url=https://eu.crucial.com/support/hardware-encryption |access-date=2024-11-16 |website=Crucial |language=en}}</ref>
[[Hitachi]], [[Micron Technology|Micron]], [[Seagate Technology|Seagate]], [[Samsung]], and [[Toshiba]] are the disk drive manufacturers offering [[Trusted Computing Group]] [[Opal Storage Specification]] [[Serial ATA]] drives. HDDs have become a commodity so SED allow drive manufacturers to maintain revenue.<ref>{{cite web |last1=Skamarock |first1=Anne |title=Is Storage a commodity |url=https://www.itworld.com/article/2799690/is-storage-a-commodity-.html |website=ITWorld.com |publisher=Network World |accessdate=2020-05-22 |date=2020-02-21 }}{{Dead link|date=August 2025 |bot=InternetArchiveBot |fix-attempted=yes }}</ref> Older technologies include the proprietary Seagate DriveTrust, and the older, and less secure, [[Parallel ATA|PATA]] Security command standard shipped by all drive makers including [[Western Digital]]. Enterprise SAS versions of the TCG standard are called "TCG Enterprise" drives.
=== Enclosed hard disk drive FDE ===
Line 27:
*Tampering is not an issue for SEDs as they cannot be read without the decryption key, regardless of access to the internal electronics {{Clarify|reason=see Talk page, decryption keys can be recovered from the internal electornics in several cases|date=July 2016}}.
Examples include [[ViaSat|Viasat UK (formerly Stonewood Electronics)]] with their FlagStone, Eclypt<ref name="softpedia">{{cite web|url=http://news.softpedia.com/news/Stonewood-039-s-Eclypt-Drive-the-AES-256-Data-Fortress-84632.shtml |title=Softpedia on Eclypt Drive AES-256 |publisher=News.softpedia.com |date=2008-04-30 |accessdate=2013-08-06}}</ref> and DARC-ssd<ref>{{cite web |title=Data At Rest (DAR) encryption solutions |url=https://www.viasat.com/products/cybersecurity/data-at-rest-encryption/ |website=www.Viasat.com |publisher=Viasat, Inc. ©2023 |access-date=2 February 2023}}</ref> drives or GuardDisk <ref>{{cite web |title=Hardware Disk Encryption for the Masses, Finally! |url=https://www.turbotas.co.uk/2003/07/30/hardware-disk-encryption-for-the-masses-finally/ |website=turbotas.co.uk |publisher=Turbotas |accessdate=2020-05-22 |date=2003-05-30 |archive-date=2020-09-25 |archive-url=https://web.archive.org/web/20200925191820/https://www.turbotas.co.uk/2003/07/30/hardware-disk-encryption-for-the-masses-finally/ |url-status=dead }}</ref> with an [[Radio-frequency identification|RFID]] token.
=== Removable hard drive FDE ===
Line 69:
==See also==
* [[Disk encryption software]]
* [[Crypto-shredding]]
| |||