Data Storage, Data Backup and Storage Virtualization - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Data Storage, Data Backup and Storage Virtualization


Group Eyes Fortress-like Hard Drives



 By: John G. Spooner
2006-06-08
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Data Storage, Data Backup and Storage Virtualization story.


Rate This Article:
Poor Best
The Trusted Computing Group, the same standards body that delivered the Trusted Platform Module security chip, is cooking up a standard for hardware-based encryption for hard drives to help prevent data breaches.

Headline-making data losses may someday be a thing of the past, thanks to widespread use of data encryption, hard drive makers hope.

The Trusted Computing Groups Storage Work Group—whose membership includes representatives from hard drive, tape drive and optical drive manufacturers—is readying a hardware-based data encryption technology standard it says will allow hard drive makers to add encryption capabilities directly into their products in the future.

The TCGs standard, which has been in the works for some time, wont arrive in time to help the 26.5 million United States military veterans whose personal data was lost recently when a Veterans Administration employees laptop was stolen.

However, the TCG believes its approach might help prevent similar losses in the future by fostering broader adoption of tough encrypted schemes inside hard drives in coming years.

"I think that youll see [encrypted drives] proliferate, because the business case is kind of obvious," said Michael Willett, chairman of the Storage Work Group and senior director of security for drive maker Seagate, in Pittsburg, Penn.

"Just look at a laptop theft. Look at the reputational loss alone a company faces from that."

Resource Library:
Given that the encryption standard can help prevent data breaches if a computer is stolen or lost, most hard drive makers are expected to adopt the standard for PC and server drives, when the TCG makes it public this fall.

Click here to read more about the TCGs work in security chips.

"The indication I have is that all the [hard] drive industry—if not the flash and the tape and the optical people—realize the value of encryption," Willett said.

"Weve got strong controls over communications of data—or data in motion. But the data at rest [on a hard drive] is the last frontier. The sense of the industry is [now] that all data at rest should be encrypted."

TCG says its approach differs from software-based encryption, such as Microsofts forthcoming Bitlocker, by piggybacking on secure communications protocols built into drive interfaces and using hardware built into drives themselves to keep tight control of cryptography keys. The standard also allows for drives to be married to a given TPM (Trusted Platform Module) security chip-equipped system.

Click here to read more about Microsofts Bitlocker.

The approach works by employing a TPM-like crypto chip, located in the drive electronics, to store an encryption key that unlocks the data stored on the drive.

Given that its stored in hardware and placed there during manufacturing, the key is nearly impossible to capture or tamper with, Willett said.

The key is unlocked by a password. The standard supports long passwords and a multimode password that uses a combination of a password, fingerprint, challenge response or certificates.

The TCG standard, which works with ATA and SCSI interfaces drives, will support multiple encryption algorithms. It expects most manufacturers to employ the AES (Advanced Decryption Standard) algorithm.

The standard will also focus on key management and making it a straightforward process to allowing multiple master and multiple user access as well as different domains on a hard drive, therefore granting IT managers the ability to limit the way some users access to their drives for example. The group also aims to offer escrowing and backup of keys.

Given that a person with a proper password can still unlock the data on a drive, it is still possible for data to fall into the wrong hands. However, the intricate password systems supported by TCG make that less likely, Willett said.

"Im not worried about the user. Its who steals the drive [and] what they have access to," he said. "The real protections are the exception cases of loss or theft or repurposing, or end of life."

The TCG is shooting to release its hard drive encryption the standard to peer review in August. Following that process, which will a take about two months, the TCG hopes to make the standard widely available in late October.

Given that hard drive makers have been working on the standard all along within the Storage Working Group, "I suspect products will soon follow," Willett said.

They "will be premium products at first…and then reduce to commodity [prices] very quickly."

Although the standard will be applied to hard drives at first, it could be used with flash memory-based drives and optical drives as well in the future, he said.

Over time, the TCGs Storage Work Group will look to make its encryption standard even more business-friendly in subsequent updates.

Although its encryption scheme will apply to drives used in NAS and SAN applications, the group believes it can simplify matters such as managing all of the encryption keys in a drive array.

"The administrator may want to have the same key on all drives, different keys, or a migration schedule or a backup schedule," Willett said. "Thats one of the things well be working on next."

Check out eWEEK.coms for the latest news, reviews and analysis on enterprise and small business storage hardware and software.



  Reader Comments: Group Eyes Fortress-like Hard Drives
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Data Storage, Data Backup and Storage Virtualization Articles          >>> More By John G. Spooner
 


x}kw6DىCO-ȶִmy,u{:P$$1HI _zP8m @^( y$sW7-gL.\sfS;uA@ Y>%w>{ '()o1mnf]( _hoL|Nx  tjGt0.Pk< Z5754o/ne0S.ڎIQ>*V!j:iݑ |i @I>b(áh] ]( Ѽe}GJߣWnSpca_ʞM"h4"j>wB'gxdY (ƻfՉziZgdh-vux;2oF֠}lui!l 1!o ݿ!Hͤ޸@d jId:4:`YTi 1܋]Їx^]õ]&ZΡR͌eCwt=PzOMҳBCLH6}~8IZQO .m4ZIbOl+qtRA'ס,lO`e[پxwgy@ffbt KJ&ԃ C(p}=\'t(`_dY7;fؖq[th(V*Z]QKru_):?*{1ك;ho>;W)EsvU ! mݹWඒk%ms|uO}~N6ox9vtx//0wFD_jQEVKi/LZH?.'N{] xZ^ Kj%ɥ~hY̞o fV҈ 'UUX:lji_Wם^gGם)7b٘XC ji@U$\]FHwAsyҽ59i{H ݙOtHM Wh:s0+Nկ7#?!&w"rVJze_R ?#1p=jI>wIAұ,O?;Be}Y 4ӗ?R(E34 i[2)>-L9X@.@שS 04'h,iV筱*҄& )B:A`̺kR$9(8ȟk4R\ 9jb蚏)6K .7Rަ,|yE U >hi,A[漺N}W%M 1F|r'̤"`Q%M '| 8S%Kuu7p@e-}rhNԖڂ1W|{g?H .Cuv}BzW^?]{68J"0"-0']ev|c77Zu?1ßVa**rkTQnʼnl :2X bXP7HaQgtA`:)ҧ!>RӚMCqRO#Gs>2胎6mb8-" ,70}HOqI $o Qx٭lE%H_¤< ) FA=H:]6Z\?`c VCB뎂9{׿ergmMA(oInPX^0G`^@48`88ʼ E!1Y@X{`sĵ;ݲeǀԜ:0$w2R}#9>] #RRR$S$!hI#r B,`@n%`G [A7gw$]Vi+Raz"ʦBICvn +=*%nqR%e 3ʬ$&vϏa,[Lbo7], Slo3-Mus֪%6ʋzhNCơǽ3yjmS#U^ğ.;*tXgF8,?Aw)?ǘ\=2,XhqOZcVsD[I3ԛmW:)P{dd ɚ)GGZtfL;eL nU]ޖgK<'*J^r2ES|Tn^ß#>b .z2H(q0ѿyy"bOyW; Kߌ5UƝWQy'g)5WxcC 6_2C+L)ESr!:w'NыE?~U-EւfUX]ٽx@r6ʞvaZZ @ĿEY mc-WV5QT0*,) Ғil`c1 "sz QIѿ7еہ`5p7V5 KJYMj_>OڹeK()em*dʫ?v=@kQDz{fLO618yRf&n \t+ˀ9\GUmg`m1Lx>x# d\46(V,'`#Cҵ; ¢w^\Sv˖?~F|4^ۄ#V!0\ zD30`,e?B{_&]1VW=ZSYdX(%UMpl"zd\s˰2X>rGmAutn\?(yS+rf! sMqN!ӐPS@ b^4(Nu=(U5GQ,~lg4B5w.Bāh<.Z6[R5>޻ئTQ߀*%E>C5؉b]Dzm4dHADbV$> \R`t>*e$X6) 5*iMym"`8+Œb:uXQH =j|{e|h3ʋ<2 Y ә^JZ=:VjeV* 8 #UFQX5`w4'7~2-sge@o(gn-%W#s3/Gx '0h'0^ɒV`|Va>]HkK2)<:ar]TՑn OQGA.C{MtAj[,@ ܠYai}^.-y~R%' _+5 "9^R˶(SN @(8u4[\Y(W` > ~6F8bƏaj4X[ %}g_mpHA`! ѝv;#ؐCKA;aVS餸=ܷVuPB"|6Œt+lg`̦v_߯XdV'#?ҍۙ'Uc2~z:i0-aNxO- r uxՂ|ͧ"rw\2Z|_ۯiGu"M.",08zGdDZz+>n +.IkSVRQXu@VI 3YˡYF 3_6^u, ς2'F{4lxG c+jBgyr@͎o3-4ڎu6f$}A>0Tlʪ+> tVR$gI#cEE4q{h7(۞j-/$x4Hđ ʝ?5p_@7@|P4H jY 5`ZV-~#0LƈQHZ#OYdY.eժR+n8L3 ,O$,t9q[6E),8{J`oP5([hr2=qZaǰZTe/ GF ssb~f.A+oS[/I6\C0:;ld}G]ItMv@Jۇ>^E1Aqqnt/;qA^vи]@MC~:'!Uɇݏ'R͏-F8o9P K1NCbw}|WszV^NN:k^6zv>G 724H4rE}R|{޽y-{wD's9B n2H,O!zۭfS k3d8)(xdqH/=),{}ҾĂ1sa՜4"z MN3"nU8\9mHF_aݪ,$<0. Iku:=<   cJ=!o8[Y9$C `I/ԩ #A?DrAFzZFijqʼnaEa1:}Qt":P/r~#<B<_dxD GBY{pXJ븕vIc~wS`Ӄs; 1di!Qr 7[%x .Mu?Ro2MĔyk.NEl =O?qu#1QLwʩ݃t* e~=m1첰tC%<2OL)gdJD$=)!jڊI4g<8J542 eI? Mt4㓄PV PɂZ# (OMkzisy^]ҹxuX<:zRp$D2Cs: e!>RဏQFh @J^KKHeW*BZ 0><)'TzC@+䬨tӨ~Mbݩca8F\x vwR;2Q杊 H N FP ߼=Foq>P]9Yz$AC~g}\00;z{w6|Of07)۝l9ninmơ8 J~Nl'Mt:DjE[c{wC9_U3$]d O>fYt2M3}ݾJfyKi^dΠt4s }!F.`0.s!15?~eܰ+w= /{w}w.+R!ykEwWSVx/)&%ϓyL @OKtGY_BQKwv{Y"V0N ئ7=12~OO=rmGMA U h CzS`{ƅ=RH3ំJփ6÷Fp7*gcc3/F#xgO(6-l@|Pp/h(0iajcZ/pqFԱQo*_O4oN{cA|3 e\1RΟ w^XR|  .wi{\nEa>'xQx7e\ڊ]aKn~ 'Vv/wN-Viug.j9W/EnnPL?IK7]Gı]<fˢjDItX>]תit!բ] HOQX\f|`\pd“Tͧ{ApH`ʈdFĕZjO$^lşn#lBGI5Ə8JbZۆ'3 b#?#qpSG: wϪձU(u9pߛr 2?u1\6P 1S8ɓ^'ĮY'1Kwcː{le@Va'!DD]GNl<9ZP fYt$g*&!s)^eJ& qR S OKZM<*,ʰ)3^껋-$B^ښ&.0=.Csopkg:&r %J@CW%?;ۊ=g>NkbOb\ 2^;nP=r-ٌ,WxRTrtIJ]y'+Rr⪒^كXDDTPf4sI\/jO2qszQ^u}l9 0O,!45xR<9G2nRX@E'iK) f:SVIͽVM:ͯX| [4iOg=P K^>;wSOxs_|ijJ- ʐy#?b[H(2 r[= L`Gdt6-Yrф 1ڑXY]1]{]Q^W^DV7a1Me/03KMp;֝t l<-}ĜqTw0eS%H nǐ^-< usےSE*)S)^- tC Ͳ1 laiN8 vp7bs"6Mɣ*&-]s,PuT.5\TxQ*{2j"<'Vܖ4I-oJ}>"N]=rt`z@j|`bSZUTչ4E:H5^/Y[D@`bU){UYl= EgU^ k+M 3.Y^G4}q7777쿷gVUuD6eM/}ptYa=9k#n̸> RQZqmjuT3PnnꆔOVz_%GpD5k*@F`Mj&\=>}]WF״k\†Yztn Pe_9rz ғ-ܑNX>QT0 0IY%0_<?!gV6+]M}X!xPQ̐Ѯl\D0Is/1Q4ڋec RIW* F'%ҕgqv8,)v>{E@7vz̑h>憤bD^J)WO!eL,zG%ۘR=]EEJDSH@V)XȚ#[_tdQmƵN2IU"ʯ֢;fV~vWooooo_Y[^2IIxGjz}[=q\uEhXwn϶LY0AQSwA dAVA׏z.RBN o4#V 7e3gx* L+ŠZj"C!U)HCS|1GS"vmk|mk\FЌ׷x5⡭OsUbnCgN6JTG01g J.?ILhaǴ 7/^;w0( PK954eB5«q/VR i^߄f45jmoݕE) uI<9jH v+c;f^} KKCׅuk/y) kc |\)ӎX$5 `Xhɧ<ћkF\JX$:~w: ir/O \K lvgu MO7U%!owt!ۼR+5}ĺ f؆_߳MJTce։ V(1RM15 Kx(R(I@=\Ջ& ,jqKפ{st:;2(PG%>a {b闶QƑO}Kr\qr Xi-۞ 'X>#b1E lXgjw OQ4Fi.fCfDtpqaFφxYq{Q8#W-V8 YêEP9,!$%9tѰL68߉o:",t롈Z81삨􄲷9L Xpj*bdfiAh!Fv;Kb+nG6Q{F$I,pKĻЖFXtb֪Z"'"KIH *,]Q|M~4]dbɤ3! /)_7T%?ڜsf61%uQ>sjtVS國R098^gYJ z~b= a*B '2AGu DR!դv^[5&@ 6L}^ŠX{y ?׶/=u`m;5Zu3_YA4`}*IjZ$24T^U'q{}hkJMLdIcA\k5\=3P}Ӝ"Ql;kF^hRy[GLV,V3u׷aJ<<}Q,mJjdRODᇀNcˡ/0ۏUKzt׳c%k 8L{6ӽ @/0s{EMF^[5xʛ̉u_`i*pM[d{=y-h<#Թ|Jsđ뛋uNw1c˅%'ev.d3+nVTm}yV9F bx>3K@$=jg~RۈUX0W0~2FԞk}8kL(DvZ3ZMqheu !ti25с8xcD|xbj bFgfɝ7gFUٽ[!VWvru ZS_D_t[6˹'BGt Mt'70* >"wAG>p<|SR=U%=Ѓhp~ڀkcEl~%:xd;>6ɝ=F&s؏pk3$.lT""a=X@2>ndeH!4]Y.B0\M9'yo_^ C_B"#x.j?C $~OB yPRdc&`-=Tmסu?䏃ِ tS!sS.9$#M>S[Ѿp}SF#;9'0 ឩ`S1,1-kDM(qiK8;WNϻ7x Zҷhlԭs=|ܽ|ڹl_]w.&hL_s}iPo$eũ6u\ _;ρWγ}QXms0`JE_C/ib 01S:9nzZ>6N78ٙ/_,fyPcYoJc>4 5{0.8S^}'vԼVxuxS?_CPj+ ݜrI;ʏW~Ns>?BgB󬳺sRhvNrʡsSC) W9sȃ"?0_}^E}"^)?Ar/"2g~/.s2gnN 9 #_>r _ԿΡ33>_?.1>Arߧ}}   Mu$!(oY NoR8G9B(^*UykOy射<)߇yVU<^`kW9x Ϳ猿 {9;[?t'u CFWz^S_xڞꖽpLڭe]9n@ G{1>Wi K{Iy@ⅇW4:<)X9vFnm׭m0`/[烫36J쓭? }MF`MTRN(p:f;^a!1`zI<vڢ{.+661}ö0~A l(U˚VVk[*j {Dç*R'Ӏe`_)&Kyg l][fʈLZCO2CX)fḇLn5FG PtleˎYUYm\bH6T<'U~ m'oޒ_g# N*K XV-2qdx¡ ! 5t@ 3P2ㄭc2O5U$wB;P@`ȼϼ!K?0@RhfC-]E`ˋ@0HsI\a\Dm8WfL/exswu,7Ɲ„kR8A<KY׌̯kL!IU?I6ZzhLRgvs&OFdy#Oaqq37=-g25Jӿ _. ?}6G$~ d`6gG|ם.ۈZ˺ufpo7 RO^ێ ՙb 2^|1~-pIei)eL|4?u l71-dt{x$[쁥z`~fI139D`%L{8;''4WB{23Ul& ɰ\T`'}ס)a4p_ 9荌=$Xm+\1SzA۹"=מ X?(xca?ocf\gHQ)xgϑt(E,Ma-.gY{6Dπl gyyY 3/p6d+,"$7rLT zښ;] v,/d/+2bŽХOvkW_NҗD.L$Cb)G$] ""`A0^doq/4O)t&I cQ'11|0j;;1Te]XaYѶy S~j]O(#ok\+<>aiEP.c<9z@n0$ ,1-i%^CHPVϗݜO Xo|8j.h6A|'KoXozQڃlyRb0yMv3c?d|C"bSp@PM6"R8WĻ sA)۱YJAł<Rgf;I) 3/2 G8FU$];566sֈNAmѥhOsYn0o6`/#]ǞG:K8~m=bҶT)V#ʅ.-Sܟ?C[a҃fF._{QEbVB8u vIѲ v7"֐0^q۷O|@ wSbֹٽGm;qSr2VM/l XGڦJ-¶,:qp {m;}+{&^ؖSaHb V\3|7ZО3q5C' Sgsa+ecPMYfc0Gp7*Ѡ,jU z' l5mEgl(3W'J^N۝wz"f/F)SذM*i29?R{) q֋/4>Saa؄;26BJ:6K^X P+)