Seagate ST9500432SS Cryptographic erase, Authenticated firmware download, Power requirements

Page 46

9.6Cryptographic erase

A significant feature of SEDs is the ability to perform a cryptographic erase. This involves the host telling the drive to change the data encryption key for a particular band. Once changed, the data is no longer recoverable since it was written with one key and will be read using a different key. Since the drive overwrites the old key with the new one, and keeps no history of key changes, the user data can never be recovered. This is tanta- mount to an instantaneous data erase and is very useful if the drive is to be scrapped or redispositioned.

9.7Authenticated firmware download

In addition to providing a locking mechanism to prevent unwanted firmware download attempts, the drive also only accepts download files which have been cryptographically signed by the appropriate Seagate Design Center.

Three conditions must be met before the drive will allow the download operation:

1.The download must be an SED file. A standard (base) drive (non-SED) file will be rejected.

2.The download file must be signed and authenticated.

3.As with a non-SED drive, the download file must pass the acceptance criteria for the drive. For example it must be applicable to the correct drive model, and have compatible revision and customer status.

9.8Power requirements

The standard drive models and the SED drive models have identical hardware, however the security and encryption portion of the drive controller ASIC is enabled and functional in the SED models. This represents a small additional drain on the 5V supply of about 30mA and a commensurate increase of about 150mW in power consumption. There is no additional drain on the 12V supply. See the tables in Section 7.3 for power requirements on the standard (non-SED) drive models.

9.9Supported commands

The SED models support the following two commands in addition to the commands supported by the standard (non-SED) models as listed in Table 6:

Security Protocol Out (B5h)

Security Protocol In (A2h)

38

Constellation SAS Product Manual, Rev. E

Page 45 Page 47
Image 46
Page 45 Page 47
Contents Standard Model Self-Encrypting Drive Model ST9500430SSST9500431SSST9500432SS SED Fips 140-2 ModelRevision history Contents About Fips About self-encrypting drives Defect and error managementInstallation Interface requirementsPower Constellation SAS Product Manual, Rev. E List of Figures GB model current profilesConstellation SAS Product Manual, Rev. E Seagate Technology support services Seagate Online Support and ServicesScope Electromagnetic compatibility Applicable standards and reference documentationStandards Electromagnetic susceptibilityAustralian C-Tick Electromagnetic complianceElectromagnetic compliance for the European Union Korean KCCReference documents European Union Restriction of Hazardous Substances RoHSGeneral description Standard features Media descriptionFormatted capacities PerformanceReliability Programmable drive capacityFactory-installed options Seek performance characteristics Performance characteristicsInternal drive characteristics Access timeGeneral performance characteristics Start/stop timePrefetch/multi-segmented cache control Cache operationCaching write data Prefetch operationRecoverable Errors Reliability specificationsError rates Unrecoverable ErrorsInterface errors Reliability and serviceSeek errors Preventive maintenancePerformance impact 4 S.M.A.R.TControlling S.M.A.R.T Reporting controlPredictive failures Temperature Log Page 0Dh Parameter Code DescriptionThermal monitor DST failure definition State of the drive prior to testingDrive Self Test DST ImplementationExtended test Function Code 010b Short and extended testsShort test Function Code 001b Log page entriesShipping Product warrantyProduct repair and return information PowerChoiceTM power management Physical/electrical specificationsPowerChoice modes AC power requirements DC power requirementsPage Power sequencing General DC power requirement notesConducted noise immunity Current profiles GB model current profilesPower dissipation ST9500430SS, ST9500431SS and ST9500432SS in 3 Gbit operationST9500430SS, ST9500431SS and ST9500432SS in 6 Gbit operation Temperature a. Operating Environmental limitsShock and vibration Relative humidityEffective altitude sea level a. Operating ShockPage Recommended mounting Vibration a. Operating-normal Air cleanlinessCorrosive environment Acoustics Mechanical specifications Mounting configuration dimensionsPurpose About FipsLevel 2 security About self-encrypting drives Controlled accessAdmin SP Data encryptionDrive locking Default passwordRandom number generator RNG Data bandsSupported commands Authenticated firmware downloadPower requirements Cryptographic eraseDrive internal defects/errors Defect and error managementDrive error recovery procedures SAS system errors Media Pre-Scan Background Media ScanDeferred Auto-Reallocation Idle Read After Write Installation Drive orientationCooling Air flowDrive mounting GroundingSAS features Interface requirementsDual port support Scsi commands supported Supported commandsSupported commands Supported commands Supported commands Inquiry data Mode Sense dataConstellation inquiry data Page Mode Data Header Miscellaneous features Miscellaneous operating features and conditionsMiscellaneous status SAS physical interface Datum B Section C C Section a a Electrical description Physical characteristicsConnector requirements Pin descriptionsSAS transmitters and receivers Signal characteristicsPower Ready LED OutDifferential signals SAS-2 Specification ComplianceLED drive signal General interface characteristicsConstellation SAS Product Manual, Rev. E Index NumericsKCC Msid Mtbf See also cooling Page Constellation SAS Product Manual, Rev. E Page Seagate Technology LLC
Top Page Image Contents