Data Storage, Data Backup and Storage Virtualization - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Data Storage, Data Backup and Storage Virtualization


Tales of the Encrypted Drive



 By: David Morgenstern
2003-07-17
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Data Storage, Data Backup and Storage Virtualization story.


Rate This Article:
Poor Best
After some tweaks, WiebeTech releases its first external hard drive with encryption built in. Who needs this device?



Angling for users who want a new way to secure their data, small storage vendor WiebeTech this week announced the first model in a line of external hard drives that offer built-in encryption. This drive also illustrates some of the changes that take place when a product moves through its development cycle, sometimes for the better.

A half-year ago, I described WiebeTechs plans for FireWire Encrypt, a hard drive that would provide hardware-based encryption independent of any host-based security architecture. (For more information, see "Locking Down Data in the Drive.")

The details for the Encrypt line have changed a bit over time because of some technological issues, according to President James Wiebe. The final shipping versions offer a different mix of encryption performance, interface and authentication than the combination he described at our last meeting.

All the announced drives come with a 120GB hard disk mechanism, although the company said it is currently qualifying capacities up to 300GB, which will be available in the fall. The company will also offer bare drive enclosures later.

The drives will come in a range of encryption strengths: forty-, 128- and 192-bit key lengths. The top encryption level was originally going to be 128-bit before the company added support for the higher bit length, a move that may make the drive more attractive to government customers. In addition, Wiebe will offer a Tempest-hardened enclosure sure to please that segment.

Resource Library:
The DES/TDES encryption and decryption is performed in real-time. To the user, application and operating system, the drives appear and function as ordinary FireWire and USB 2.0 drives, and users will not see a difference in data-transfer performance, Wiebe said. Everything is encrypted, including partition information.

Originally, the company expected to ship a single enclosure that would offer both FireWire and USB 2.0 interfaces. Instead, the Encrypt drives come with one or the other interface. Wiebe had hoped to embed the encryption algorithm into the FireWire bridge chip, which would have supported both interfaces. However, Wiebe said the speed was a problem, and now the encryption is performed on a separate processor.

Users authenticate the drive with a hardware key—a USB dongle—instead of accepting a software key from the host. Each drive ships with a pair of keys.

According to Wiebe, these keys cant be readily copied, and the technology to produce a duplicate key is expensive. The company in the fall will offer an "embargoed key service" that keeps on file the encryption key for each drive in case the key is lost.

The enclosure also functions as a single-bay dock, and users can purchase additional trays for drive mechanisms. The first model in the FireWire Encrypt and USB2 lines will support 40-bit encryption and cost $339.95.

For folks interested in a similar, smaller secure drive, I noticed that eNova Technologies Corp. has a kit for 2.5-inch mechanisms called the X-Wall Secure USB 2.0.

So what are the markets for the Encrypt drive, outside the obvious governmental customers?

Wiebe said the architecture will let managers easily limit access to data that needs greater security—for example, personal data on a corporate intranet. With an ordinary storage bay, the drive must be physically removed to limit access and physically secure the data. However, for the Encrypt drive, the authentication is simply withheld, and the drive can remain connected to the computer or server without concern that the private files will be accessible.

One longtime storage-industry observer opined that there was only a "very, very limited appeal for such a product. Such a drive is only for those with an almost neurotic worry about their data."

(Perhaps he underestimates the privacy concerns of some users. I recently spoke to a tape-product manager who said a customer had recently inquired about explosive cases for backup sets!)

I can see a number of potential growth markets for the technology, especially ones that model current workflows. Certainly, the drive would be perfect for the physical transport of digital movies from the distributor or studio to the theater. With 192-bit encryption, nobody will be burning a copy for the pirate DVD market. One key would be kept at the distribution point and the other at the theater. Just dont ship it with the drive.

I wonder: Can the transport of a 192-bit encrypted hard drive really be considered sneakernet? Or is it more iron-boot-net? Would you buy an encrypted drive? And what would you use it for? Let me know what you think.

David Morgenstern is a longtime reporter of the storage industry as well as a veteran of the dotcom boom in the storage-rich fields of professional content creation and digital video.



  Reader Comments: Tales of the Encrypted Drive
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Data Storage, Data Backup and Storage Virtualization Articles          >>> More By David Morgenstern
 


x}r8s;>ӮcvI%ۚ,*OuEB!)/w~⼜?qfঅTל[([" D;?;;~$rLH56%3E]"I#(pZ/IzA)v@{iFuۚ8ApTwd>J`OS;S )&Ӱ5>X |+[3}BF6\3b Qk$Ё_MMJDDRzGEQ=-Dm:]'w*GUFn3pa_ʞ}%k4݋ʏIGO(>0;GlRۄؼz00!}%D"Sˡ,ft 2n eþ=r@)Q_9P+{1;֨o~TTMSns~U !lݹ܎ගk%9{rԾ 7;A:WYHL~#/@Dr V*,MD&-ԁNWP? uH5}(ĭ~ZJi%ɥvdY̞o fVҘ 'UUX;AK~1/NMNlL,/!Z4 _]HwAբurqӹlnwMZOvI; i fɗVk p6O{uH0`kh`cRV>H ?z'Wm2 ᭫Rdt"˭A|н | ,-)Tt</Rzhf5 x CX&%Gi":u vPx۬)MZ!Rƒ uKs^8j\K0Fp JpJq䨉k>ش 6,%̟i>`i˫1TY0mESi:]V4y3Dɝ g/3/r.i }h8yWTws izt49;ϢesJVd];7E֏G;]g8m7-ҿ]{gmPqJ"0"- ]evbc\kꛛZrOR}xQ9PߢW,@FKP̶# e u{yΆNQ'}5>'4b}t>'჎(>h&ƋCri[nL-rӇtw4A>+OݺzN^TŞ*LК0#'A 6]LR}t 9q PhQ0|sL,0( I#=ˋƠ` VGPC!nH }P(V|`{ nȲc@|j JGr%FaADاI.BD(ZH"!Alq [$t XV(V쎄~ .t@G҅;qjPG;7ф=*%nqR%e 3ʬ$&vϏaZLbo7], Slo -Muc{s_9ҴJ >Ѵ7=[KGuY-$MXb IK$%\EwT-::ޟ=Fa]Gt0x>h3Vh9N) ./ aH]6[9X0N-cJb+p5(Bk?f P=6:{mQHtP:%qK{:9A7ÚLGVG+oo; =p ؇#UV3_H뼜2N#iۖsM2߄T +9v#\ē ry͚X 4ؐ9|ƓB77SnS^ʚ*#wT4 +tjz#JCݼ~hé;h{q#%Aw=e河xOuYKnuo?յ݋pz9(KӺJj'/"odm_EڠueLGy K-C IHf(XK+ezlx8$&le2LE6pȞZc7l`(`V57) KJtyRʚU%٬ X;l d AqFNݔ`AFVLl9TZW),֩z}&GnzȔqu+$8`ϟ )e!\o ZJoX,,iThjMMmbfyb|FȸBqmP XbO@Cеg;ʰ^^˦4~|4^ۄ#V!2FD30`- FgM{b^-#D^ɰRVJ1 6D ȸpa,ri*wڶ{?Qdy$Q0JЫIr!স ֈyH 1/]g* CĕQ/ay@YB# ! B4q`* Z3l%3sGZ0.Xz|ĦTQۀ*v" Qքw& 0T:㽭pFC̍ E . Z. H }"T0|.U*U H`mR@@kRUӈ.E^q~ VW%"'uX6H }j}t~h3<2 y g{LRJZ5A4:GjZEgGsG<(yWEbIxԀA_fPCˬ7K!v8hc0{NK\̇O>zX 0{h'0de+0\@3kh~ YGYHH):2 XZ 0XA,C{MtAj[, 0Y~W2É"9EY;6WVb=>` Dqkpƽ b/^W9.^٤Ĉ԰/hwyUM+a2"(ʇFseuu|Ƭ.nxr 9O UjY GqSVsOnUc*| :vi1v-0\=>w"qgD d넱Ŏ|@"I)(/9 %Z*hXi&E#uyaDClУA$7v)`ܘEpXH;QOq/!/.6@AŷO[\JYTJ`qEZ9y)HǞ1]]2Y1i}SU!הReΌ}/S Ymiq#,.҄^e.u=r 8xj@Yʊnw` x_V #=, =X디Z92¢YĢ*Go&ŏjȏ5rv=HD~ =ײ,LU&CUiZe%%f͋!VI#Ǹ.ɢ6A(™)dIH59l)`R(s=T@]Z +ia/ dw!]: PG" cZ,nAEr @Nos/4N򬽧Vŵ]2MdX$U ~`MٸUvJӴj%IO} *Q-ˤӧG׆!oy!3." 7P)߱~놺9:)xT״}m\ߑJ t-ӄ1⺆aJA-ç, p_.ekR-T~8J3Ay' 2vB:q-L6MR),9J`&gP-([hre$ $"zr#)=2 杨V*UXŵ .xqNLv>B(5AdE66kJ~Zg'7>h t@(+?v燤@:mv; sKt'Υ_AwyHDмG9;g݇Z{R5 }U\8$#_ή{/[R!9>48|yG$K }c]Zqm} zsHiR'D[3pq*"EKhwXki)i[YUH+?#qbx'`J(w!9/J*m̱¹OH1ԝ(6;WQ杊O4wD]{'NE Tzw~QW{20tKdܕvd{qO n4]9n舧^UR;i2$BUU+j*ۻA\EVeΜtٗN|99qX!d7Yu x3D?-yiҒ91>onR;=ԃz4GP%(bA}q.~(TR.fO뻬,J骇v9]MU-/^RRIJ>^_$ϫꀞ" h6vo"Ba"fsME[9(4}`>i-'oR:8 c=~-rAHb<+ Li.)ф;&%- =:K2j}ܽr ^kB{.feexr:mS^>vc";N>`=`[qŜF?ۧiUTF_p%|$5C_M<e*O$J]y R@⊒^ۃX8S&"ZюAU-$G^SRn65= =[LxEC}f73Œ[㱉ɓ Q!B6 9$`2Y^Ub2)BQs)I15I ~8%=lY <}0("J\sJ`S(HRǒ ݖ[ҙ 0v} S*'?MDdē9o +g>ml\u+H")ڦTSz-%<槃Rua tߑ#wJUJ%搏/zG+kSx{z9/! OWHD0` y1@Jqm|76!TLgT,)" ,@g9уu'::a_ZOiFش4P}+uzue\p^Ss[k(Е8N}i ao3@Ad  /wL?ݍzܐSmQNaTXzieWcd dWZSe԰p-4| Y?*ªFifZZ#JvE{(/9 yjMSZm_ܧF(+}):})v0ZX9XieZ{cq;O\KJfڲVSo4Jv (ALLAGr;c{±@`:Iߣb7b~mx+sY d#jϊ_aћQnZ3ZIqxfu! sdUk)5Lj"xxb bFa?Ϫ͒;IoP}sY?e=a ' 3u?|۽[!ʃVSvr C*:;m[65i0d pHtMO & ):]БܟޕJuOIgO8==|6ڄyiǥ4Y!gMr'7LӦ12K= o~{@܍q 81r,Ie)+փފ> rF@YfG P56WnrnR-i`IkBx$lx DޞɏpbZxK ÃH'iĔ8%6:݋OvOccZ|G,{{GǙ;\E~уPbH-'KE,D "}fA=aAa~L­!R)Qw30^snp0"(3[]ă02]3(OqW'Ng#jbR b\]:vNի'H=P<`A~Bj@̔0د?=').yDci 8^iN4xPZx#oX62 =6#`;C grڻ&Mrznuj]Esa[+M|폺Uw{'ϧurPhZ>hbv>4m^+Lxte$AN/6Sr?ԙpi.$ "cɃw]d;82ԝga~\<)Qe3̋ q7~4AoL7[vc+t?gg:Z9q!xlR?hJc> U>Mo )n}>eЈLjV}QyxS S+S~ O@͜rʑ[V;O֗~Nss?G(Shw֗wZFS3˜r' _9埡 ]3?]7g]̓ 挿 ͡.g7>G/s ?唟CyNߠo9](^%e\]_O/G@rU}\W9_\OoC@?֗C_S^9S>>oʁ~orڿi&ҺNr7sy S89B8^yWa uyS~9򬂗 z2*ϕRW~>' sg#I^WKͮ0TntKL쵆cn5:vņ^_ebAR̥-c@#]q8G.v)n7wlpK|` U75iqsq[~r^<^Ȭuj7-P.Y#IsDgev0ACѺ`*O W%q3[ #Èà8UFsVj?f?]7a i__6/WCg>'[ *8y:Ptw }I&ĀY4'}(BgعkjzGlt5hÅL~g0ush|uR#ij~jZ)}#\#ʓp=bUUEVjrp` VQUr(2B4|KӬWQ7tS+rS kb5:tp%v ߄`-YkD 2ydoc Tq4J#KӄYBDӼf;6hx qn9SwFQ<X!WSn" >oђ^\g#N*K X-2 k`UϹerㄭc2O5U$w|\t`|!ٻl0@\hdY?.xC0Ĥtȩ$7M " n#@6`:}n` ->X v;n;+n%kb5Spduxe^ˆOf AL HqA{=4Fo"9ݜ œ*aѡ(YS{XmDh'gߞ39 %߆Nlwnf'=(' CQ=;zlF,4 ]3(x,x`Syvt.K. 2sBS|$pIei/ 1"ψy&&l }_|a9%!fI13%Dl%d/ h_;kHlfM b}3,5 q3$<#!1苄IMS ZsJD!D֣ca:4%,s>hn픽aCmz+F2jSo:h}r;Wsܪ}#ϙm^'(z ̸>9ϐR1%%)^AG}F5 ௚B㙸|z^Db, *HQ0^ R [QƹT6vUl[1e[BI<ŗ`>,"$7rLT zZO:= v,4%^ {io-G}c_VdńK 8F1HyU_[?"&`ɕX)Iuǧ|o7|B,[K3\6DDRg}J0yN:mv8N9DEPީ!/[vk3)fGVFp)hDN<|y<ۢuK ğ?X \ CwHV&(bvUt .Ы r!9|d@NooM cmjN_U`7'~* VŃA>h4M@(ɒ0F?]Jÿˍtf_$%\KkS 6[ "ˍ JmӬ>s¹"UXJَR ,~:3_[mrΧ(@PP/Wt:OyBtzl뎮Eeuݎ¼ȶJW{O]Kl 1CΰҶT)V#ʥ.Sܟ?Ca҇fF+KeY$Vi)>.)ZF$c-ӭ䅤<P8_AS.vQ%eN܌uF¶u4meѩ&oߩn^sQa[O_<.tc bS,ۙF ya1 g'{y瞲{o91F`=s묞ƫR6ȴ{ ePChk5ZK (Dq] XNâȖWITR6!;/D?8- cYĬ ;acXJYB!Ƨ ?'TS*4.>ϝn<^e9-_0$a1+>c-hw͹!S׆)񳇹0ϕòD1]e6 s޷`=dZ^]x OYdWPэX-f1!Dr$8ґCAĞR!e´#L 1L\,2.7v!{Zq΋{_bE|>ODNű<<*ID~y)V @ȟ$}E.tqeQ V\t*{v P.i۹|C*'꛺UNGώ7_Q}B]FBl4.w$7pEIwşyueK*K- QwjgA0 }U\+]=;`olsg>p7*`