Opal Storage Specification
From Wikipedia, the free encyclopedia
Data storage device security specification
This article has multiple issues. Please help improve it or discuss these issues on the talk page . (Learn how and when to remove these messages)
(Learn how and when to remove this message)
This article relies excessively on references to primary sources . Please improve this article by adding secondary or tertiary sources.
Find sources: "Opal Storage Specification" – news · newspapers · books · scholar · JSTOR (May 2017) (Learn how and when to remove this message)
Find sources: "Opal Storage Specification" – news · newspapers · books · scholar · JSTOR (May 2017) (Learn how and when to remove this message)
This article is missing information about Opalite and Pyrite, two subsets defined by the TCG (& the even simpler TCG Enterprise). Please expand the article to include this information. Further details may exist on the talk page. (June 2023)
The Opal Storage Specification is a set of specifications for features of data storage devices (such as hard disk drives and solid state drives) that enhance their security. For example, it defines a way of encrypting the stored data so that an unauthorized person who gains possession of the device cannot see the data. That is, it is a specification for self-encrypting drives (SED).
The specification is published by the Trusted Computing Group Storage Workgroup.
Overview
[edit ]The Opal SSC (Security Subsystem Class) is an implementation profile for Storage Devices (SD) built to:
- Protect the confidentiality of stored user data against unauthorized access once it leaves the owner's control (involving a power cycle and subsequent deauthentication).
- Enable interoperability between multiple SD vendors.[1]
Functions
[edit ]This section does not cite any sources . Please help improve this section by adding citations to reliable sources. Unsourced material may be challenged and removed. (May 2017) (Learn how and when to remove this message)
The Opal SSC encompasses these functions:
- Security provider support
- Interface communication protocol
- Cryptographic features
- Authentication
- Table management
- Access control and personalization
- Issuance
- SSC discovery
Features
[edit ]This section does not cite any sources . Please help improve this section by adding citations to reliable sources. Unsourced material may be challenged and removed. (May 2017) (Learn how and when to remove this message)
- Security Protocol 1 support
- Security Protocol 2 support
- Communications
- Protocol stack reset commands
Security
[edit ]Radboud University researchers indicated in November 2018 that some hardware-encrypted SSDs, including some Opal implementations, had security vulnerabilities.[2]
Implementers of SSC
[edit ]Device companies
[edit ]- Hitachi
- Intel Corporation [3]
- Kingston Technology [4]
- Lenovo [5]
- Micron Technology [6]
- Samsung [7]
- SanDisk [8]
- Seagate Technology [9] [10] as "Seagate Secure"
- Toshiba [11] [12] [13]
Storage controller companies
[edit ]Software companies
[edit ]- Absolute Software [17]
- Check Point Software Technologies [18]
- Dell Data Protection [19]
- Cryptomill [20]
- McAfee [21]
- Secude [22]
- Softex Incorporated [23]
- Sophos [24]
- Symantec [25] (Symantec supports OPAL drives, but does not support hardware-based encryption.)[26]
- Trend Micro [27]
- WinMagic[28]
- OpalLock [29] (OpalLock support Self-Encrypt-Drive capable SSD and HDD. Develop by Fidelity Height LLC)
Computer OEMs
[edit ]References
[edit ]- ^ TCG Storage Security Subsystem Class: Opal Specification Version 2.01 Revision 1.00 . Trusted Computing Group, Incorporated. 05 August 2015. Retrieved 2019年11月22日.
- ^ Meijer, Carlo; van Gastel, Bernard (19–23 May 2019). Self-Encrypting Deception: Weaknesses in the Encryption of Solid State Drives. 2019 IEEE Symposium on Security and Privacy (SP). San Francisco, CA, USA: IEEE. pp. 72–87. doi:10.1109/SP.2019.00088 . hdl:2066/207837 . ISBN 978-1-5386-6660-9. ISSN 2375-1207.
- ^ "Intel® SSD Pro 1500 Series (M.2): Specs". Intel.com. Retrieved 2017年05月03日.
- ^ "Solid State Hard Drives for Business". Kingston.com. 2017年03月05日. Retrieved 2017年05月03日.
- ^ Clain Anderson (2011年02月16日). "Opal – More than a Semi-Precious Stone | Lenovo". Blog.lenovo.com. Retrieved 2017年05月03日.
- ^ "Micron Technology, Inc. - Full SSD Part Catalog". Micron.com. Retrieved 2017年05月03日.
- ^ "Samsung V-NAND SSD". Samsung.com. Retrieved 2017年05月03日.
- ^ "SanDisk's X300s Solid State Drive". Archived from the original on 2014年08月03日. Retrieved 2014年08月02日.
- ^ "News". Seagate. Retrieved 2017年05月03日.
- ^ "Full Disk Encryption Software, Hard Drives, SSDs & Whole Disk". WinMagic. Retrieved 2017年05月03日.
- ^ "Fujitsu Develops HDD Security Technology based on Opal SSC Standards - Fujitsu Global". Fujitsu.com. Retrieved 2017年05月03日.
- ^ "Specialty | TOSHIBA Storage & Electronic Devices Solutions Company | Americas". Storage.toshiba.com. Retrieved 2017年05月03日.
- ^ "Specialty | TOSHIBA Storage & Electronic Devices Solutions Company | Americas". Storage.toshiba.com. Retrieved 2017年05月03日.
- ^ "Marvell Technology Group Ltd". Marvell.com. Retrieved 2017年05月03日.
- ^ "Marvell, Kingston Collaboration Proves Positive with Over Six Million SSD Units Shipped". Kingston Technology. Retrieved 30 December 2021.
- ^ "SandForce Flash Storage Processor SSD Controllers". Archived from the original on 2013年08月08日. Retrieved 2013年08月01日.
- ^ "Self-Healing Endpoint Security". Absolute. Retrieved 2017年05月03日.
- ^ "Industry-Leading Cyber Security Keeps Networks, Data Centers, Mobile Devices & Endpoints One Step Ahead | Check Point Software". Checkpoint.com. Retrieved 2017年05月03日.
- ^ "Data Security | Dell United States". Dell.com. 2017年04月26日. Retrieved 2017年05月03日.
- ^ "CryptoMill :: Products & services". Archived from the original on 2012年02月09日. Retrieved 2012年01月14日.
- ^ "McAfee Corporate KB - KB75045". Kc.mcafee.com. Retrieved 2017年05月03日.
- ^ "FinallySecureTM Enterprise - SECUDE AG". Archived from the original on 2012年01月26日. Retrieved 2012年01月14日.
- ^ "Comprehensive Data Encryption and Protection Solutions - SecureDrive". Softexinc.com. 2014年06月20日. Retrieved 2017年05月03日.
- ^ "Full Disk Encryption | Always-On, Multi-Platform Enterprise Encryption Synchronizes Devices, Hard Drives, Removable Media, BitLocker, and Cloud Storage Protection in Real-Time". Sophos.com. Retrieved 2017年05月03日.
- ^ "Endpoint Encryption Powered by PGP Technology". Symantec.com. Retrieved 2017年05月03日.
- ^ "Archived copy". Archived from the original on 2017年09月25日. Retrieved 2016年02月03日.
{{cite web}}: CS1 maint: archived copy as title (link) - ^ "Data Protection – Endpoint and Gateway Suites | Trend Micro". Us.trendmicro.com. Retrieved 2017年05月03日.
- ^ "Full Disk Encryption Software, Hard Drives, SSDs & Whole Disk". WinMagic. Retrieved 2017年05月03日.
- ^ "Software management of TCG self-encrypting drives". Fidelity Height LLC.
- ^ "Dell Official Site | Dell United States". Dell.com. 2017年04月26日. Retrieved 2017年05月03日.
- ^ "Laptop Computers, Desktops, Printers and more | HP® Official Site". Hp.com. Retrieved 2017年05月03日.
- ^ [1] Archived 2008年08月28日 at the Wayback Machine
- ^ "Fujitsu News Updates - Fujitsu UK". Fujitsu.com. Retrieved 2017年05月03日.
- ^ "Panasonic Toughpad | Rugged Tablet | Toughpad". Panasonic.com. 2015年10月27日. Retrieved 2017年05月03日.
- ^ "Rugged Notebooks, Tablets, Handhelds and Laptops from". Getac.com. Retrieved 2017年05月03日.