Attacking FDE hardware solutions: Difference between revisions
Jump to navigation
Jump to search
m (Add terminology section) |
m (Add ieee standard and misc stuff) |
||
Line 19: | Line 19: | ||
== Standards and Whitepapers relating to FDE at the hardware level == | == Standards and Whitepapers relating to FDE at the hardware level == | ||
* IEEE | |||
** http://en.wikipedia.org/wiki/IEEE_P1619 | |||
* Seagate | * Seagate | ||
** http://www.seagate.com/staticfiles/SeagateCryptofaceoff.pdf | ** http://www.seagate.com/staticfiles/SeagateCryptofaceoff.pdf | ||
Line 28: | Line 31: | ||
** http://www.seagate.com/docs/pdf/whitepaper/Server&Drive%20Security%20Threats%20rev%204%203.pdf | ** http://www.seagate.com/docs/pdf/whitepaper/Server&Drive%20Security%20Threats%20rev%204%203.pdf | ||
** http://www.seagate.com/docs/pdf/whitepaper/DataCtrSec_TP583-1-0711USr4.pdf | ** http://www.seagate.com/docs/pdf/whitepaper/DataCtrSec_TP583-1-0711USr4.pdf | ||
* Hitachi | * Hitachi | ||
** http://www.hitachigst.com/tech/techlib.nsf/techdocs/74D8260832F2F75E862572D7004AE077/$file/bulk_encryption_white_paper.pdf | ** http://www.hitachigst.com/tech/techlib.nsf/techdocs/74D8260832F2F75E862572D7004AE077/$file/bulk_encryption_white_paper.pdf | ||
Line 38: | Line 42: | ||
* FDE - Full Disk Encryption | * FDE - Full Disk Encryption | ||
* BDE - Bulk Data Encryption | * BDE - Bulk Data Encryption | ||
* OTFE - [http://en.wikipedia.org/wiki/OTFE On-the-fly encryption] |
Revision as of 21:27, 18 January 2009
Many companies tout hard drives with built in encryption as the solution to the Cold Boot Attack. Additionally, these drives are sold as a major step forward in overall data security. In theory, this sounds like a good idea; in practice this could go horribly wrong.
This project is currently in a research state to find different drives that claim to offer specific security properties. It is expected that many products will fail even the most cursory look.
Please add links to products, vendors, standards, prices and places to purchase hardware. At some point, we'll start acquiring hardware to do specific implementation analysis.
Drive manufacturers and specific drive models
- Seagate
- Hitachi
Previously published research
- Heise successfully attacked the Easy Nova Data Box PRO-25UE RFID
Standards and Whitepapers relating to FDE at the hardware level
- Seagate
- http://www.seagate.com/staticfiles/SeagateCryptofaceoff.pdf
- http://www.seagate.com/staticfiles/docs/pdf/whitepaper/tp596_128-bit_versus_256_bit.pdf
- http://www.seagate.com/staticfiles/docs/pdf/security/Tech_Paper_Enables_Robust_Security.pdf
- http://www.seagate.com/docs/pdf/whitepaper/HDpasswrd_TP580-1-0710US.pdf
- http://www.seagate.com/docs/pdf/whitepaper/Seagate-crypto-bakeoff.pdf
- http://www.seagate.com/docs/pdf/whitepaper/tp596_128-bit_versus_256_bit.pdf
- http://www.seagate.com/docs/pdf/whitepaper/Server&Drive%20Security%20Threats%20rev%204%203.pdf
- http://www.seagate.com/docs/pdf/whitepaper/DataCtrSec_TP583-1-0711USr4.pdf
- Hitachi
List of FDE (SW & HW) providers
Terminology
- FDE - Full Disk Encryption
- BDE - Bulk Data Encryption
- OTFE - On-the-fly encryption