[OpenIndiana-discuss] self encrypting disks
real-men-dont-click at gmx.net
real-men-dont-click at gmx.net
Mon Feb 11 10:18:31 UTC 2013
-----Original message-----
From: Richard Elling <richard.elling at richardelling.com>
Sent: Sat 09-02-2013 04:14
Subject: Re: [OpenIndiana-discuss] self encrypting disks
To: Discussion list for OpenIndiana <openindiana-discuss at openindiana.org>;
> On Feb 8, 2013, at 6:33 AM, real-men-dont-click at gmx.net wrote:
>
> > Hello,
> >
> > given the lack of encryption in current open-source zfs I came across the so
> called self-encrypting-disks (eg. HGST UltraStar A7K2000 BDE 1000GB).
> >
> > Did anybody try to use them under OI so far?
>
>
> Soon, many, if not all, HDDs will be shipped as self encrypting. AFAIK,
> there is no OI project for managing the keys, however. I'm interested to
> know what the demand for these tools might be.
> -- richard
>
> --
>
> Richard.Elling at RichardElling.com
> +1-760-896-4422
>
>
>
> _______________________________________________
> OpenIndiana-discuss mailing list
> OpenIndiana-discuss at openindiana.org
> http://openindiana.org/mailman/listinfo/openindiana-discuss
>
Hello,
I looked a little bit around to check how difficult it would be to use these disks inder OI.
As far as I understand the concepts behind SED, commands follow the "ATA security commands" standards.
These commands can be used to issue eg. an complete erase, but also to provide the unlock keys for the disks etc..
Should it be possible to write a userland tool to send the needed command via the USCSI ioctl to the disk?
cu
Carsten
More information about the OpenIndiana-discuss
mailing list