Seagate ST9450204SS, ST9600204SS, ST9600104SS, ST9600004SS About Fips, Purpose, Level 2 security

Page 46

8.0About FIPS

The Federal Information Processing Standard (FIPS) Publication 140-2, FIPS PUB 140-2, is a U.S. govern- ment computer security standard used to accredit cryptographic modules. It is titled “Security Requirements for Cryptographic Modules”. The initial publication was on May 25, 2001 and was last updated December 3, 2002.

Purpose

The National Institute of Standards and Technology (NIST) issued the FIPS 140 Publication Series to coordi- nate the requirements and standards for cryptography modules that include both hardware and software com- ponents.

Federal Information Processing Standard (FIPS) 140-2 Level 2 Certification requires drives to go through gov- ernment agencies certifications to add requirements for physical tamper-evidence and role-based authentica- tion.

Level 2 security

Level 2 improves upon the physical security mechanisms of a Level 1 (lowest level of security) cryptographic module by requiring features that show evidence of tampering, including tamper-evident coatings or seals that must be broken to attain physical access to the plaintext cryptographic keys and critical security parameters (CSPs) within the module, or pick-resistant locks on covers or doors to protect against unauthorized physical access.

Figure 26. Example of FIPS tamper evidence labels.

Note. Does not represent actual drive.

38	Savvio 10K.4 SAS Product Manual, Rev. E

Image 46

Contents Standard Models Self-Encrypting Drive Models ST9600204SSST9600104SS ST9450404SSST9450304SSST9600004SS ST9450204SS SED Fips 140-2 ModelsRevision history Contents About Fips About self-encrypting drives Defect and error managementInstallation Interface requirementsPage Savvio 10K.4 SAS Product Manual, Rev. E List of Figures Page Seagate Technology support services Seagate Online Support and ServicesScope Electromagnetic compatibility Applicable standards and reference documentationStandards Electromagnetic susceptibilityAustralian C-Tick Electromagnetic complianceElectromagnetic compliance for the European Union Korean KCCReference documents European Union Restriction of Hazardous Substances RoHSGeneral description Standard features Media descriptionFormatted capacities PerformanceReliability Programmable drive capacityFactory-installed options Seek performance characteristics Performance characteristicsInternal drive characteristics Access timeGeneral performance characteristics Start/stop timeCache operation Prefetch/multi-segmented cache controlCaching write data Prefetch operation Recoverable Errors Reliability specificationsError rates Unrecoverable ErrorsInterface errors Reliability and serviceSeek errors Preventive maintenancePerformance impact 4 S.M.A.R.TControlling S.M.A.R.T Reporting controlPredictive failures Temperature Log Page 0Dh Parameter Code DescriptionThermal monitor DST failure definition State of the drive prior to testingDrive Self Test DST ImplementationExtended test Function Code 010b Short and extended testsShort test Function Code 001b Log page entriesShipping Product warrantyProduct repair and return information PowerChoiceTM power management Physical/electrical specificationsPowerChoice modes AC power requirements DC power requirementsPage 450GB standard model DC power requirements 0Gb mode Amps Power sequencing General DC power requirement notesConducted noise immunity Current profiles Current profiles for 600GB modelsCurrent profiles for 450GB models Power dissipation GB models in 3Gb operation600GB models in 6Gb operation 450GB models in 3Gb operation Environmental limits Temperature a. Operating450GB models in 6Gb operation Effective altitude sea level a. Operating Relative humidityShock and vibration Shock Recommended mounting Vibration a. Operating-normal Air cleanlinessCorrosive environment Acoustics Mechanical specifications Mounting configuration dimensionsPurpose About FipsLevel 2 security About self-encrypting drives Controlled accessAdmin SP Data encryptionDrive locking Default passwordRandom number generator RNG Data bandsSupported commands Authenticated firmware downloadPower requirements Cryptographic eraseDrive internal defects/errors Defect and error managementDrive error recovery procedures SAS system errors Media Pre-Scan Background Media ScanDeferred Auto-Reallocation Protection Information PI Setting and determining the current Type LevelIdle Read After Write Levels of PIIdentifying a Protection Information drive Installation Drive orientationCooling Air flowDrive mounting GroundingSAS features Interface requirementsDual port support Scsi commands supported Supported commandsSupported commands Supported commands Supported commands Inquiry data Mode Sense dataSavvio inquiry data Page Mode Sense data for 600GB drives Mode PagesMode Sense values for 450GB drives Miscellaneous features Miscellaneous operating features and conditionsMiscellaneous status SAS physical interface Datum B Section C C Section a a Electrical description Physical characteristicsConnector requirements Pin descriptionsSAS transmitters and receivers Signal characteristicsPower Ready LED OutDifferential signals SAS-2 Specification complianceLED drive signal General interface characteristicsIndex NumericsKCC Msid Mtbf See also cooling Page Savvio 10K.4 SAS Product Manual, Rev. E Page Seagate Technology LLC

Related manuals

Manual 82 pages 32.11 Kb