Random number generator RNG, Drive locking

9.2.3Default password

When the drive is shipped from the factory, all passwords are set to the value of MSID. This 32-byte random value is printed on the drive label and it can be read by the host electronically over the I/O. After receipt of the drive, it is the responsibility of the owner to use the default MSID password as the authority to change all other passwords to unique owner-specified values.

9.3Random number generator (RNG)

The drive has a 32-byte hardware RNG that it is uses to derive encryption keys or, if requested to do so, to provide random numbers to the host for system use, including using these numbers as Authentication Keys (passwords) for the drive’s Admin and Locking SPs.

9.4Drive locking

In addition to changing the passwords, as described in Section 9.2.3, the owner should also set the data access controls for the individual bands.

The variable "LockOnReset" should be set to "PowerCycle" to ensure that the data bands will be locked if power is lost. This scenario occurs if the drive is removed from its cabinet. The drive will not honor any data read or write requests until the bands have been unlocked. This prevents the user data from being accessed without the appropriate credentials when the drive has been removed from its cabinet and installed in another system.

When the drive is shipped from the factory, the firmware download port is unlocked.

9.5Data bands

When shipped from the factory, the drive is configured with a single data band called Band 0 (also known as the Global Data Band) which comprises LBA 0 through LBA max. The host may allocate Band1 by specifying a start LBA and an LBA range. The real estate for this band is taken from the Global Band. An additional 14 Data Bands may be defined in a similar way (Band2 through Band15) but before these bands can be allocated LBA space, they must first be individually enabled using the EraseMaster password.

Data bands cannot overlap but they can be sequential with one band ending at LBA (x) and the next beginning at LBA (x+1).

Each data band has its own drive-generated encryption key and its own user-supplied password. The host may change the Encryption Key (see Section 9.6) or the password when required. The bands should be aligned to 4K LBA boundaries.

9.6Cryptographic erase

A significant feature of SEDs is the ability to perform a cryptographic erase. This involves the host telling the drive to change the data encryption key for a particular band. Once changed, the data is no longer recoverable since it was written with one key and will be read using a different key. Since the drive overwrites the old key with the new one, and keeps no history of key changes, the user data can never be recovered. This is tantamount to an instantaneous data erase and is very useful if the drive is to be scrapped or redispositioned.

36	Constellation ES.2 SAS Product Manual, Rev. D

ST33000652SS, ST33000650SS, ST33000651SS specifications

The Seagate ST33000651SS, ST33000650SS, and ST33000652SS are high-performance enterprise hard drives designed for demanding storage applications. These models are part of the Seagate Constellation ES series, known for their reliability and performance in server and data center environments.

One of the most notable features of these drives is their capacity. The ST33000651SS and ST33000650SS offer a storage capacity of 3TB, providing ample space for data-intensive applications. The ST33000652SS enhances this with a larger storage option, ensuring that organizations can meet growing data demands without needing frequent upgrades.

These drives utilize a SATA 6Gb/s interface, which allows for high-speed data transfer. This increased bandwidth is essential for applications that rely on rapid access, such as virtualization, cloud computing, and database management systems. Additionally, the drives support Native Command Queuing (NCQ), which enhances performance by optimizing the order in which read and write commands are executed.

Reliability is paramount in enterprise environments, and Seagate addresses this with several technologies designed to minimize downtime. The ST33000651SS and its counterparts feature a 7200 RPM spindle speed, which not only delivers fast access times but also contributes to the overall durability of the drives. They also come with advanced error correction and data integrity features, which safeguard against data loss.

Another important characteristic of these drives is their low power consumption. Operating at an average power usage of 6.0W, they help reduce operational costs, particularly in large-scale deployments. This energy efficiency is essential for organizations looking to maintain sustainability while maximizing performance.

In terms of physical design, these hard drives are built to endure tough conditions typically found in data centers. They come in a standard 3.5-inch form factor, ensuring compatibility with a wide range of servers and storage enclosures. The robust design further enhances their lifespan, making them a sound investment for enterprise storage solutions.

In summary, the Seagate ST33000651SS, ST33000650SS, and ST33000652SS hard drives offer a compelling combination of high capacity, fast data transfer rates, and reliability. Their advanced technologies and energy-efficient design make them ideal choices for enterprises that require dependable and high-performing storage solutions in their IT infrastructure.

Seagate ST33000651SS Random number generator RNG, Drive locking, Data bands, Cryptographic erase

Models: ST33000652SS ST33000650SS ST33000651SS