About SSD AES-encryption

Self-encrypting drives use an encryption engine built into the SSD’s controller to encrypt every file stored on the drive. The purpose of AES Encryption is to convert standard input data known as plaintext to an unintelligible output known as cipher text.

So if AES encryption on SSD used for data randomization function only, it only provides some data protection in the sense that if the controller is damaged, a 3rd party would not be able to read the data on the flash. In normal usage, however, there would be no data protection as any party that is in possession of the drive can read the data.

Methods of using AES on SSD to Secure Data

Hardware-based Encryption
Self-encrypting drives include dedicated AES encryption engines that do not require software to run on the host. The randomized AES encryption keys are generated at product initialization using the controller’s true random number generator and encrypted in the SSD. This could also be implemented by a Trusted Platform Module (TPM) chip build into the system hardware. Then the users can enable the AES encryption through BIOS. If authorized, the BIOS would access a secure data storage location that contains the encryption keys. The BIOS would then write the keys to their specific SSD to enable access.

ATA Security
If supported, the user could through ATA security using system BIOS. Setting the ATA password will set the authentication key and enable authentication on an encrypted SSD.

Self-designed Tool
If the user cannot program ATA command themselves, we also can provide a tool based on user’s OS (Windows or Linux) for them to implement encryption.


To learn more Renice's SSD AES encryption, please email us at sales@renice-tech.com

Comments

Post a Comment

Popular posts from this blog

Renice r-Backup® Power Failure Protection of SSD

Image
rBackup (Rapid Backup) refers to a technique of how to flush data stored in DDR into NAND Flash within a very short period. It is developed by Renice to solve the problem that regular power failure protecting mechanism (based on super capacitor or tantalum capacitor) does not work when capacitor ages with power less than initial design as time goes by. Background Mainstream SSD deploy SDRAM or DDR to improve the R/W speed. That follows the issue of data loss or mapping table loss when sudden power failure occurs. To guarantee the data integrity, usually SSD makers design a power failure protecting mechanism based on Super-Capacitor or Tantalum Capacitor, which will work as backup power for SSD in power failure circumstance. This design seems to be perfect to balance the performance and reliability. However there is a potential hazard behind it in real application. Both Super-Capacitor and Tantalum Capacitor keep aging as charge & discharge times increase. Common warranty pe...
Read more

How to extend SSD life expectancy by 3 folds? Renice Non-Balance Wear Leveling Algorithm

Image
The first portion of this article introduces the background of wear leveling and some commonly used algorithm while the second portion covers a kind of wear leveling that can prolong life by three folds: Non-balance Algorithm. Experts may skip directly to the later portion. In order to prolong the life cycle of NAND flash by avoiding some blocks being frequently erased and becoming bad blocks rapidly while the existence of other less erased blocks will cause an unbalance Program/Erase situation that shorten the overall SSD product life as a drawback. There are various algorithm towards wear leveling and garbage collection raised by NAND flash practitioner as strategy to avoid these potential problems. Background of Wear Leveling Algorithm The wear leveling algorithm is based on the basic characteristics of flash memory: 1. Do not support local update (outplace-update that is data in original location cannot be overwrite or change directly, this data will need to be relocated t...
Read more