Seagate ST1000NM0011, ST2000NM0031, ST500NM0051 Purpose, Seagate Enterprise SEDs, Level 2 security

Page 31

4.0ABOUT FIPS

The Federal Information Processing Standard (FIPS) Publication 140-2 is a U.S. Government Computer Security Standard used to accredit cryptographic modules. It is titled 'Security Requirements for Cryptographic Modules (FIPS PUB 140-2)' and is issued by the National Institute of Standards and Technology (NIST).

Purpose

This standard specifies the security requirements that will be satisfied by a cryptographic module utilized within a security system protecting sensitive but unclassified information. The standard provides four increasing, qualitative levels of security: Level 1, Level 2, Level 3 and Level 4. These levels are intended to cover the wide range of potential applications and environments in which cryptographic modules may be employed.

Seagate Enterprise SEDs

The SEDs referenced in this Product Manual have been validated by CMVP and have been thoroughly tested by a NVLAP accredited lab to satisfy FIPS 140-2 Level 2 requirements. In order to operate in FIPS Approved Mode of Operation, these SEDs require security initialization. For more information, refer to 'Security Rules' section in the 'Security Policy' document uploaded on the NIST website. To reference the product certification visit - http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401vend.htm and search for "Seagate".

Level 2 security

Security Level 2 enhances the physical security mechanisms of a Security Level 1 cryptographic module by adding the requirement for tamper-evidence, which includes the use of tamper-evident coatings or seals on removable covers of the module. Tamper-evident coatings or seals are placed on a cryptographic module so that the coating or seal must be broken to attain physical access to the critical security parameters (CSP) within the module. Tamper-evident seals are placed on covers to protect against unauthorized physical access. In addition Security Level 2 requires, at a minimum, role-based authentication in which a cryptographic module authenticates the authorization of an operator to assume a specific role and perform a corresponding set of services.

Figure 7. Example of FIPS tamper evidence labels.

Note. Does not represent actual drive.

CONSTELLATION ES SERIAL ATA PRODUCT MANUAL, REV. F

26

Page 30 Page 32
Image 31
Page 30 Page 32
Contents Constellation ES Serial ATA Document Revision History Contents Serial ATA Sata interface Figures Seagate Technology Support Services Introduction About the Serial ATA Interface Specification Summary Tables Drive SpecificationsFormatted Capacity LBA modeSeek Time Default Logical GeometryPhysical Characteristics Recording and Interface Technology2TB models 1TB models 500GB models Power SpecificationsPower consumption START/STOP Times2TB Drive DC power requirements 1TB Drive DC power requirements 500GB Drive DC power requirements Typical current profiles 2TB model current profile 1TB model current profile Voltage tolerance 500GB model current profileStandby mode Power-management modesPower modes Heads Spindle Buffer Active modeA.R.T. Read Data Reports Extended Power Conditions PowerChoiceTMPower Condition Name Power Condition ID Description PowerChoice is invoked using one of two methodsPowerChoice Supported Extended Power Condition Identifiers Power Condition Name Manufacturer Default Timer ValuesPower Condition Identifiers Power Condition Name Environmental Limits Temperature a. OperatingOperating shock Humidity Relative humidityAltitude ShockElectromagnetic Immunity AcousticsFluid Dynamic Bearing FDB motor acoustics Test for Prominent Discrete Tones PdtsElectromagnetic compatibility Safety certificationReliability Agency CertificationAustralian C-Tick N176 Korean RRLFCC verification China Restriction of Hazardous Substances RoHS Directive Environmental ProtectionCorrosive Environment Storage Product WarrantyReference Documents ShippingConfiguring the Drive Handling and STATIC-DISCHARGE PrecautionsSerial ATA Cables and Connectors Drive Mounting Mounting dimensions-top, side and end viewSeagate Enterprise SEDs PurposeLevel 2 security Data Encryption Controlled AccessRandom Number Generator RNG Drive Locking Authenticated Firmware DownloadPower Requirements Supported CommandsRevertsp ATA Security Erase Unit Command on SED Sata DrivesSerial ATA connector pin definitions Serial ATA Device Plug Connector PIN DefinitionsHOT-PLUG Compatibility Command name Command code in hex Supported ATA CommandsCA H Word Description Value Identify Device commandXx 3F H Description if bit is set to Set Features command values Set Features commandM.A.R.T. commands 3 S.M.A.R.T. commandsIndex Psid RNG Index Seagate Technology LLC
Top Page Image Contents