Data Storage, Data Backup and Storage Virtualization - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Data Storage, Data Backup and Storage Virtualization


Finding Good Use for an Encrypted Drive



 By: David Morgenstern
2003-07-24
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Data Storage, Data Backup and Storage Virtualization story.


Rate This Article:
Poor Best
The time may be ripe for hard drives with built-in encryption. Or at least that's the opinion of Storage Supersite readers, who saw openings for the storage in medical offices, departments and even for Web services.


Out of sight is not necessarily out of mind when it comes to your data. At least, that was the sentiment of a number of readers as they considered applications for hard drives that come standard with hardware-based encryption. This security technology could be a summer sleeper hit.

The question surfaced in a recent column on WiebeTechs new FireWire Encrypt and USB2 Encrypt lines of external hard drives. The drives firmware offer various levels of DES encryption. According to the company, the encryption firmware doesnt impact the data transfer performance of the drive and the security is transparent to users and software. (See "Tales of the Encrypted Drive" for more information.)

WiebeTech was looking for additional market applications for the drive, beyond some potential government customers. Still, one analyst thought the need for hardware encryption was overblown, even calling it "neurotic."

Samuel Adams, a military contractor (his e-mail sported a .MIL domain) agreed with the criticism, even for use in a government facility. "Most government organizations that would want an encrypted drive are locked down pretty tight—so the risk of someone coming in and stealing a drive seems pretty low. I would think this would have much more useful applications for a laptop or for some other type of portable device."

Resource Library:
Offering contrary opinions, many of you thought that the drive addressed quite a number of specific security needs in small and mid-sized businesses to keep private data private. It also would ease concerns when data moves off the premises.

Jeff OByrne pointed to HIPAA requirements for protecting health information. "Although too small at this level for hospital storage, it would be ideal for a doctors office."

At the same time, OByrne observed that the convenience of wireless security and telecommuting may be in conflict with the goals of data security in the HIPAA environment.

"Wi-Fi security is being worked on and can be expected to improve, but [wireless connections] should not be assumed to be greater than experienced in a TCP/IP glass network," OByrne said. "The legislative and regulatory initiatives are based on the sanctity of data, not of the communication, ergo the mobile workers using laptops or PDAs are holding corporate assets of significant value and legal liability. A properly constructed VPN should satisfy the regulators of the sanctity of the data in transit. A hard drive with encrypted data should withstand the inevitable Federal audit."

Some data wants to be kept confidential, even within a company, a number of you observed. And the price for drive-level encryption seemed reasonable.

"Real data security for $400 will appeal to top corporate users, software developers in highly-competitive areas, and for human relations directors, given the legal requirements they have to live with," John Christie observed. "When the technology is proven in the market, we will incorporate it in our management systems information, particularly for marketing development."

Several of you thought encrypted hard drives would be useful for off-site storage. However, Jim C., a "startup Webmaster," saw a use for encrypted storage, albeit in a different form, when dealing with Internet collocation companies.

"I can see encrypted drives being put into Web servers for companies to use at collocation facilities," Jim C. said, describing a secured server with a locked rack-mount case. "No exposed ports for video, keyboard, USB or other dongle. The collo folks would be able to swap failed hard drives and major components, but wouldnt be able to get at the data, even by copying the hard drives."

"Theres no reason for the collo folks to have access to the data! Whos working there late at night, anyway? Can you trust complete strangers with your customers credit-card numbers? Companies do all the time, and I think well start hearing horror stories about internal security at (less expensive) collocation facilities in the future," Jim C. predicted.

At the same time, perhaps hardware encryption wouldnt be necessary in this application. The data stored in a single drive of a RAID Level 5 array is already "encrypted" by being striped. You cant recover any data from it apart from the other mechanisms in its set. However, hardware encryption could give some extra assurance to customers of mirrored configurations that store data in a readable format.

Without a doubt, trust is difficult to find, whether in personal relations or between business partners. My guess would be that Jim C. will sleep easier if his customers data was located closer to his home base. Much closer, like in the closet down the hall. Of course, that would bring its own share of expenses and management headaches. But some value sleep over all.

David Morgenstern is a longtime reporter of the storage industry as well as a veteran of the dotcom boom in the storage-rich fields of professional content creation and digital video.

More from David Morgenstern:



  Reader Comments: Finding Good Use for an Encrypted Drive
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Data Storage, Data Backup and Storage Virtualization Articles          >>> More By David Morgenstern
 


x}r8s;iW1ŋ:d[viڲ<<ձ $)CRս~fMZsNl@"3H$$ W7-gL:9)ٝ O,zIj|݇PBezAUM JԶO7R5v:! f*x #@PL5uI]ٚc6h2)X -$(kzZ'|5;s #&=ڥɏ{ k[teN(TGYnSqca/De_Xɾ)*M"h4"j>v NRY@ZSˆ辥{$)5< \g4"1lp2rH n>,uQj9?I܃F8CYnU~= :ԍ۱|$ &j&s&,U-M  ҇P2zhN-2^ʲnMw3a[mѡlطGZ.h5E9*U+(r_ӽl˙=X8^p?/.ir]?^H C[wn5-;ZI;OY\v?..> oF6o:A7߈+Q\"*Jt4MQA 1qjj q+%oF`)ڑVR\jGFZV@`%pbQU:Ϧeu}uHu:CF,sAV5 衂ĠAtW?#;ˠjqsvz|qӾOZ=$/'t: +?9V'_W[Uկ=>扷kaj;PePp9L+pZ| ~8\$RW/' MDO `HםBi۲ܺ,BKEkaXXZnVՉ*YX]uUfjZ/~}ޡ:Yt:%eOV'ݸ p;pw>-Fz13{Q >0iCkJ^@E$-D@sMPId+f!S@uGA νdrgmMA(oEnPh^0 vhiqppYY;0BYuCb賀B=`MAKweC93(uKd˕F }*@F>H>'!I#r*B1,`@n%9 P  \.y"M'8.ܱ;P>LX裲XB ^X/E/)͙R2dV0U 򍜘M5i+:ϧHڶESC77Bs݈C/2 W.Y 2gxRUfyQtʜ*PX3n26=MJ<§"ǰA@7Z`N)^\IIcНj!D xl\6ƖuV"k̲X]ۼ/ 7ryO4 uK{2,6@Qٖk ,:+}:K_iHH*E6@\Z1,c %c ҉0Z?Hpo{:j`bE3%UVLLXV2G'ZYSj2e6kV-[٠CbeܡQ7%X3Q[lxuꟸCߵy~ou3$83'^hp$H80Vm2`aBSkjj33. o+_ ׆ %K Lc*:tԳtgquؿXZZ îtٔүhVp5ч=&:QMe "6h#e!׽IA̫eUf-Pנq2&q?|2,e(,@ArGmAu؜;s94=Zjt,g\\npf Z*LAqA04]yU/ro1,4­ra,1 DR6V2Swhvǹm*IH qNIQ*)MXg"9oLq3 4dHܸ)cpHl`_t`@B^% &@SVsEkZC㖪gFܔ7ц&[кXRMOvPeУGjq~9ë#߬0pqw$jTUtCjzVU3no*(S,iɁ;7~2Ms`@o([@g-%WA'XY8f5x/,yb ȗun BZY>CVVőG@ֽk uV8V=" V@>a=EGV8!L9 S"z@zz>v/eOW5O3jLfh2 3?Q<aQgu?uUJ*{g:j/Β68F2A) CqMQYR;eC鴸 B) y=6-hh^ALcf̞eFIªKZ&ԊutS6neUiZMJ֞'avپym({KeŖok÷L+߱~9C:)xT״}m\ߑJ t,ӄ>⺆bJA-ç p_. ekR-TA8J3A26Bs:ǣ[mpD75a )49R`&gP-(khr1-Hx0M8tz'Jqm?s<cSwO{?J п  }MMA9 f# ;?J䏝nڧسe_:kv_ ?NKv00~|}ο*LІ_i|D`uu4[]4 -LAI 4p?".&mׇ>n{%Wt˰F.ZgKF@FE~#tKmI{͏eKJ:^[j4K͋! AV]='uti)qfm2'C3`Xc?$ ^Cښ ҽ>m]sbA`NZ _hk-Vئ78ZۍmEnUkq o }`qAQl1@+JF{W/{mE hbT ~E/b)#Q\(둞OYi{D$0^ȝo%?Oů1Ok7tAx[(kx,:bsZ=t/Q?xDؾhB>"YZ:gōWo"lUϭkԛC2L:1D*rޚS)ZBӆ'>s/]x!ul0jq%Ӝa:q;Is6vk[NhAgdJD =)!ښI4g"8J542 eI? U'0㓄PV Ywɂ#5=Թ8/T/iwη GY-I+#/CiA0'͋h",G7<m1>Bb%h4eW:Bzc^?<7G3`Lޜz ` ,FJfYҼ4hɘAhl7B_7nC\`l]#%?~Peܰwߵ= =z [k}E*]s"5Q#vKR*Iʧ{uZSD m֖Fݽ]޿vVȿ5LĴxBw<띧twLkD:~d_>\jTm+輱2 a[C؞qaLdrOC%6÷kFp7N f_!O#%JJ ,ץ^`6-l@|Pذ/h]Z/0iaj}Z/p8|#؈f/'Ɏ?7e{cA|3 e\wcךW)yc bƒk0KLBH|pNLV&(zЗqi+\/1vQ커Xȃb Q@K}wDȫB{eu:=S\;]0'zpcO}`[qŀK?ZgYUlOTtD/œUJqKMm_W}25NI˟^qH#uIO(I Ģ RC0]Պvj 9'w]uAfOo(ib@:$ۇ&9zf,"3`5x=9!dȺMp`A3N+ .UU%&C"4m=^t/ />S#\./)'gBٳƚs`O .$OxZ/ZKeHzωűF$љxIG=$lz=).mm_A(ua!v!RRI]j< S h+LR/tAJUFP‰nn%7ZBZp j2^BF@0+4%W.MF{O/|*g;tTUR#sX{:'HIEN=)J: :۱O[@J}_7ŵ/hR+cLE(.t{ڀ'8Nz:y%*}E,EzR(<ؔ.K/E,zkOxf:@ Z+ iTSR ar =`I,FhVdG޼nH/f_GҍH6.UZY3QRΜ`nҫ4Vp|^܊B"63Е>+PP:m)Hq`Q 8rGxK6a'YӰ1[ Oqp65++0ZElH"P9'²z!^1S`\̢oʞ ڠ׍nH WQ(V t6FϘPϷnV^ٺ9iD0cK^0 P@$rh4W~CR{1  4_>[7ҧ g,c ݩ%@3uƠx9wJ@Q{`%w.ӗjrF^!9( IT#b4wUI@UhP_1^_!Qq鎜2uَ:Rʒ,; elNGݬ3~rOooooo۲V*޶îucjMt&(e &*ĝ٦2%v Stmo(8Lc@D^Q"X_9Hifvz.nn&snm,vm]RSU'm欆ohoFپEgSn k (c.1v^?BX)\Ro u/Oԯm(]pJְt~"^Rof6_R?u)o\s=@QGj19zHg+h ws:greH @`r#?qD_q7pcӜog\nG ڄHɅ^ʑv/Yjw`-}05umvtM$aK&?,yIE8{ D5^WrCdK7Cׅuu/y)%, n<)K53s L $Pognyjϓ摞6˱="C䅆CwZhl|7 CX^ogO< ;vpFH6v{fnzr [B*쭐B@y=<\Ϝh5Y~m,Mo qeuXaڐ8ps3&{mZ@+?ZTxmk`}X'I{_@6,Z~iYѧS.E||Zny-RgNͱ7=܃yGYj,&`TKE:`ѿFd)c4 Rf6: ٔ`PW:DSt:ztowwv]gDI;εw $5YX,^.Eڥm.\+ۖ)jV ,/6m{1pO7^g;m-G݌bd@.]hBx]"`}^>S6-̆x9q{Qa#hD"|Q\6P?Sڞ`܀*gxRsVq͊v  `ՄWnC$uJ\0'( ̰6$ ʡI'Qm.*Pìfl!ۿP'mdɷKQV^Fcv2QȏBQ QWQ)t'<~'*&ТC>ybqNI)?։(qKg[_A9y\_~;_bT#j=X:ojĻѪjmܷ68 ^b-n^L5,Xyҟ>K2aQQYݣ\ۦ;rDn|Q]ȗPôgM]Y aJfad}$F6lE߽gD(hGꨶ"\aX5ů/ [#rh!@ ,%oL"%(wE0{hD^dbɤ-(7K fןRףQ}Ό"F$xr#*]sNnz֪ʁs~\  { K]Φ1xy[/Oz'5!L*FVfںŬr+)~,y 5J=@AC &ړ{zy岶_U2=o='M kPbߚRLxxX R{?~Ga951ǖC0UKzpײ}_CrPMva  ^a ᷍ kd7әw%th'*vUZt\tz W[ "yFsg.=߯m.9dz.z{ǰnX+ 66mYU)7g%ۅ]`aYL &N&09;c{±@{Iϣ43?b)o:,19rlgŚZ(rœ.&;zZ#ZIqhf5B;Y]J|1E}>:E TTЍ~V%wޠf~z*ޟ'2u?|۹[!ʃVSvrm*'8;-[6 hUt MW }^zC&J^j$'q @`m̬DGRQx{o M-╙FG5Ӏ#gT<"a-Xnh@*>ndeH&]YYc `xT!(Fپ Eo]2!:wg(-$=V:mGTתC79a2 F=qz9$.+Ra S#Y  [zqeL\*efC.7,>:LXP4ez?/ח=@)aXDu2Dt082*%⇦cH9 xE ? ׽nrj[ք aNr:!ߝF$%FVF?uEv`ou|m_16Fa[/b 6B;b<1xX, ;+D:Eb) (aE$7@4G4(lϏB6DRSJLn$(:_~ΙfJÉ :laww.Bt揣O~?]:q@V0pRt=:]stT*ʞ <򽉡{0u9Y 32C¤vt cH${=9QAim,waZ~X{dO 0 K1cRSJ953ʰLXU˩#n}w^3+DfZ+YT( I+;} w/#*a@}FL@s,4WW_Y4uEz{'~{I[_ٮvrtrӁwrg賓Cȣ9 s?BǜAr;IK..ȟn|ȗ+W9寁~sϡ? ?}}ʡϐ9/9sw7y@79{wCNr!HoY Nϯps˅q+ /Wa uy~9@zJ͡ ,cr\) KҾ2~6RAm_tO qʕ8{^S_xښꖽVqLfM9n@KG{2Ph +[ IzHGU4:,)~lbyDe?~VRR枌u]CZLj. {]2-XѦV{5_9=U26_@UωHc=h0 .ǐ2ۿE?|k2YwI8B { 7\6puٍ]#pҚ޴lŭxg?9/ݹgֺ+3c+p'k͠6K֐GD>Y݉7x.؅ oBcU>[d$oqaC3-0ŸheR 7㌰6~ybCjHy1>:iĞl}U8z:Ptw ߽ RKdCb̛>xO3l5ELOj9#[S3Q)ւ_6Ogзcǁ/K[KVo9۲b'H&]a1񌔗%k4}GdRݤ_, 9"%mPmJhK`{sHj(4&I cNc avwf9ceu,s0ŴBShJ ,(OۿQFֺ%1m.; +C&bt:#A\U ]rd@NooiMMmjċ *|?Ge!Mt8͡mn8X|9ޥ4(NA")1 GK ]f'[٦2й=-R/i[͌:ʾ,ϱ{ QEbfA#q쒢U.nDd3.C7DjF7Br dZ\O؅u&v#kG3b+/A,xrs*]x7NbŒ b3S}vct()kڊ2J%bq'Ii?W$t/ XںqS'_w?]JQFyiNQyק,!j/񮞝P7qrz̳ƛ#P1%?[eUUSN$7}hMѓec*@ٯ6vFًfSذN*d%r R;3ųiS}*3fʾ we&l.)v{m-S6]-;:.