Seagate ST9600104SS Cryptographic erase, Authenticated firmware download, Power requirements

Page 49

9.6Cryptographic erase

A significant feature of SEDs is the ability to perform a cryptographic erase. This involves the host telling the drive to change the data encryption key for a particular band. Once changed, the data is no longer recoverable since it was written with one key and will be read using a different key. Since the drive overwrites the old key with the new one, and keeps no history of key changes, the user data can never be recovered. This is tanta- mount to an instantaneous data erase and is very useful if the drive is to be scrapped or redispositioned.

9.7Authenticated firmware download

In addition to providing a locking mechanism to prevent unwanted firmware download attempts, the drive also only accepts download files which have been cryptographically signed by the appropriate Seagate Design Center.

Three conditions must be met before the drive will allow the download operation:

1.The download must be an SED file. A standard (base) drive (non-SED) file will be rejected.

2.The download file must be signed and authenticated.

3.As with a non-SED drive, the download file must pass the acceptance criteria for the drive. For example it must be applicable to the correct drive model, and have compatible revision and customer status.

9.8Power requirements

The standard drive models and the SED drive models have identical hardware, however the security and encryption portion of the drive controller ASIC is enabled and functional in the SED models. This represents a small additional drain on the 5V supply of about 30mA and a commensurate increase of about 150mW in power consumption. There is no additional drain on the 12V supply. See the tables in Section 7.3 for power requirements on the standard (non-SED) drive models.

9.9Supported commands

The SED models support the following two commands in addition to the commands supported by the standard (non-SED) models as listed in Table 7:

Security Protocol Out (B5h)

Security Protocol In (A2h)

Savvio 10K.4 SAS Product Manual, Rev. E

41

Image 49
Contents ST9600004SS ST9450204SS ST9600204SSST9600104SS ST9450404SSST9450304SSStandard Models Self-Encrypting Drive Models SED Fips 140-2 ModelsRevision history Contents Installation Defect and error managementAbout Fips About self-encrypting drives Interface requirementsPage Savvio 10K.4 SAS Product Manual, Rev. E List of Figures Page Seagate Online Support and Services Seagate Technology support servicesScope Standards Applicable standards and reference documentationElectromagnetic compatibility Electromagnetic susceptibilityElectromagnetic compliance for the European Union Electromagnetic complianceAustralian C-Tick Korean KCCEuropean Union Restriction of Hazardous Substances RoHS Reference documentsGeneral description Media description Standard featuresReliability PerformanceFormatted capacities Programmable drive capacityFactory-installed options Internal drive characteristics Performance characteristicsSeek performance characteristics Access timeStart/stop time General performance characteristicsCache operation Prefetch/multi-segmented cache controlCaching write data Prefetch operation Error rates Reliability specificationsRecoverable Errors Unrecoverable ErrorsSeek errors Reliability and serviceInterface errors Preventive maintenanceControlling S.M.A.R.T 4 S.M.A.R.TPerformance impact Reporting controlPredictive failures Temperature Log Page 0Dh Parameter Code DescriptionThermal monitor Drive Self Test DST State of the drive prior to testingDST failure definition ImplementationShort test Function Code 001b Short and extended testsExtended test Function Code 010b Log page entriesShipping Product warrantyProduct repair and return information PowerChoiceTM power management Physical/electrical specificationsPowerChoice modes DC power requirements AC power requirementsPage 450GB standard model DC power requirements 0Gb mode Amps Power sequencing General DC power requirement notesConducted noise immunity Current profiles for 600GB models Current profilesCurrent profiles for 450GB models GB models in 3Gb operation Power dissipation600GB models in 6Gb operation 450GB models in 3Gb operation Environmental limits Temperature a. Operating450GB models in 6Gb operation Effective altitude sea level a. Operating Relative humidityShock and vibration Shock Recommended mounting Vibration a. Operating-normal Air cleanlinessCorrosive environment Acoustics Mounting configuration dimensions Mechanical specificationsPurpose About FipsLevel 2 security Admin SP Controlled accessAbout self-encrypting drives Data encryptionRandom number generator RNG Default passwordDrive locking Data bandsPower requirements Authenticated firmware downloadSupported commands Cryptographic eraseDrive internal defects/errors Defect and error managementDrive error recovery procedures SAS system errors Media Pre-Scan Background Media ScanDeferred Auto-Reallocation Idle Read After Write Setting and determining the current Type LevelProtection Information PI Levels of PIIdentifying a Protection Information drive Drive orientation InstallationAir flow CoolingGrounding Drive mountingInterface requirements SAS featuresDual port support Supported commands Scsi commands supportedSupported commands Supported commands Supported commands Inquiry data Mode Sense dataSavvio inquiry data Page Mode Pages Mode Sense data for 600GB drivesMode Sense values for 450GB drives Miscellaneous features Miscellaneous operating features and conditionsMiscellaneous status SAS physical interface Datum B Section C C Section a a Connector requirements Physical characteristicsElectrical description Pin descriptionsPower Signal characteristicsSAS transmitters and receivers Ready LED OutLED drive signal SAS-2 Specification complianceDifferential signals General interface characteristicsNumerics IndexKCC Msid Mtbf See also cooling Page Savvio 10K.4 SAS Product Manual, Rev. E Page Seagate Technology LLC
Related manuals
Manual 82 pages 32.11 Kb