Seagate ST200FM0042 manual About SELF-ENCRYPTING Drives, Admin SP, Locking SP, Default password

Page 41

8.0ABOUT SELF-ENCRYPTING DRIVES

Self-encrypting drives (SEDs) offer encryption and security services for the protection of stored data, commonly known as “protection of data at rest.” These drives are compliant with the Trusted Computing Group (TCG) Enterprise Storage Specifications as detailed in Section 2.2.

The Trusted Computing Group (TCG) is an organization sponsored and operated by companies in the computer, storage and digital communications industry. Seagate’s SED models comply with the standards published by the TCG.

To use the security features in the drive, the host must be capable of constructing and issuing the following two SCSI commands:

SECURITY PROTOCOL OUT

SECURITY PROTOCOL IN

These commands are used to convey the TCG protocol to and from the drive in the appropriate command payloads.

8.1DATA ENCRYPTION

Encrypting drives use one in-line encryption engine for each port, employing AES-256 data encryption in Cipher Block Chaining (CBC) mode to encrypt all data prior to being written on the media and to decrypt all data as it is read from the media. The encryption engines are always in operation and cannot be disabled.

The 32-byte Data Encryption Key (DEK) is a random number which is generated by the drive, never leaves the drive, and is inaccessible to the host system. The DEK is itself encrypted when it is stored on the media and when it is in volatile temporary storage (DRAM) external to the encryption engine. A unique data encryption key is used for each of the drive's possible16 data bands (see Section 8.5).

8.2CONTROLLED ACCESS

The drive has two security providers (SPs) called the "Admin SP" and the "Locking SP." These act as gatekeepers to the drive security services. Security-related commands will not be accepted unless they also supply the correct credentials to prove the requester is authorized to perform the command.

8.2.1Admin SP

The Admin SP allows the drive's owner to enable or disable firmware download operations (see Section 8.4). Access to the Admin SP is available using the SID (Secure ID) password or the MSID (Manufacturers Secure ID) password.

8.2.2Locking SP

The Locking SP controls read/write access to the media and the cryptographic erase feature. Access to the Locking SP is available using the BandMasterX or EraseMaster passwords. Since the drive owner can define up to 16 data bands on the drive, each data band has its own password called BandMasterX where X is the number of the data band (0 through 15).

8.2.3Default password

When the drive is shipped from the factory, all passwords are set to the value of MSID. This 32-byte random value can only be read by the host electronically over the interface. After receipt of the drive, it is the responsibility of the owner to use the default MSID password as the authority to change all other passwords to unique owner-specified values.

8.3RANDOM NUMBER GENERATOR (RNG)

The drive has a 32-byte hardware RNG that it is uses to derive encryption keys or, if requested to do so, to provide random numbers to the host for system use, including using these numbers as Authentication Keys (passwords) for the drive’s Admin and Locking SPs.

8.4DRIVE LOCKING

In addition to changing the passwords, as described in Section 8.2.3, the owner should also set the data access controls for the individual bands.

The variable "LockOnReset" should be set to "PowerCycle" to ensure that the data bands will be locked if power is lost. In addition "ReadLockEnabled" and "WriteLockEnabled" must be set to true in the locking table in order for the bands "LockOnReset" setting of "PowerCycle" to actually lock access to the band when a "PowerCycle" event occurs. This scenario occurs if the drive is removed from its cabinet. The drive will not honor any data READ or WRITE requests until the bands have been unlocked. This prevents the user data from being accessed without the appropriate credentials when the drive has been removed from its cabinet and installed in another system.

When the drive is shipped from the factory, the firmware download port is unlocked allowing the drive to accept any attempt to download new firmware. The drive owner must use the SID credential to lock the firmware download port before firmware updates will be rejected.

PULSAR.2 SAS PRODUCT MANUAL, REV. C

35

Page 40 Page 42
Image 41
Page 40 Page 42
Contents Pulsar.2 SAS Revision Date Description of changes Document Revision HistoryContents Defect and Error Management PHYSICAL/ELECTRICAL SpecificationsInstallation About Fips About SELF-ENCRYPTING DrivesInterface Requirements Figures Seagate Technology Support Services Standard models Standard SED models Fips 140-2 Level ScopeElectromagnetic susceptibility Applicable Standards and Reference DocumentationElectromagnetic compatibility Electromagnetic compliance for the European Union Electromagnetic complianceAustralian C-Tick Korean KCCChina Restriction of Hazardous Substances RoHS Directive General Description 512 800GB 400GB 200GB 100GB520 524Thin Provisioning capabilities Thin Provisioning Product ConfigurationLogical Block Provisioning PI and SED Drive Configuration Format Unit commandUnmap Protection Information PI and Security SEDFormat Mode Dcrt Bit IP Bit 800GB 400GB 200GB 100GB Performance CharacteristicsAccess time Typical Access Time μsecPerformance Usage Based Warranty Performance Managed Life WarrantyST800FM00 ST400FM00 ST200FM00 ST100FM00 PerformanceCaching write data Interface errors Reliability SpecificationsUnrecoverable Errors Wear Leveling SSD Percentage Used Endurance IndicatorGarbage Collection Write AmplificationHot plugging the drive Preventive maintenance4 S.M.A.R.T Controlling S.M.A.R.TReporting control Performance impactDetermining rate Predictive failuresParameter Code Description 800/400/200/100GB Temperature Log Page 0DhManaged Life Warranty Product warrantyUsage Based Warranty Extended test Function Code 010bPower consumption PHYSICAL/ELECTRICAL SpecificationsStartup power Peak operating mode800GB 6.0GB 800GB standard model DC power requirements400GB 6.0GB 400GB standard model DC power requirements200GB 6.0GB 200GB standard model DC power requirementsGeneral DC power requirement notes 100GB standard model DC power requirementsCurrent profiles Power sequencingConducted noise immunity Current profiles for 400GB models Current profiles for 100GB models 200GB models in 6Gb operation 800GB models in 6Gb operation400GB models in 6Gb operation Environmental Limits 100GB models in 6Gb operationEffective altitude sea level a. Operating Temperature a. OperatingRelative humidity Shock Shock and vibrationCorrosive environment Air cleanlinessVibration Weight Pounds 160 grams Weight Pounds 100 grams Validation Program PurposeSeagate Enterprise SED Security LevelDefault password Admin SPAbout SELF-ENCRYPTING Drives Locking SPData Bands SSD Physical format address descriptor Defect and Error ManagementDrive Error Recovery Procedures Identifying a Protection Information drive Setting and determining the current Type LevelLevels of PI Physical interface InstallationX = F 15lb = 67N Task management functions Interface RequirementsSAS task management functions supported Task management responsesFormat Unit Supported commandsPersistent Reserve Reassign Blocks Write and Verify Pulsar.2 Inquiry data Inquiry dataMode Sense data Mode Sense data for 800GB drives Mode PagesMode Sense data for 400GB drives Mode Sense data for 200GB drives Mode Sense values for 100GB drives SAS physical interface Miscellaneous featuresMiscellaneous status Datum B Section C C Section a a Connector requirements Physical characteristicsElectrical description Pin descriptionsLED drive signal PowerSAS transmitters and receivers Ready LED Out5G B/ S 0G B/ S Differential signalsGeneral interface characteristics Index Index SAS See also cooling Americas Seagate Technology LLC
Top Page Image Contents