BLU Discuss list archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Discuss] NAS: encryption
- Subject: [Discuss] NAS: encryption
- From: richard.pieri at gmail.com (Richard Pieri)
- Date: Thu, 9 Jul 2015 10:36:00 -0400
- In-reply-to: <sjmh9pd8mgu.fsf@securerf.ihtfp.org>
- References: <5596D8DA.2000201@gmail.com> <55980A9F.4020007@gmail.com> <BY1PR0401MB1641117906253C39D8075681DC940@BY1PR0401MB1641.namprd04.prod.outlook.com> <sjmd203evpz.fsf@securerf.ihtfp.org> <CAFv2jcba50_Kw9V-p7brmeJ5Fk=9rzeQRLRzBUVRK8uZ71wZNA@mail.gmail.com> <BY1PR0401MB164127DEA53006B9692DC60CDC920@BY1PR0401MB1641.namprd04.prod.outlook.com> <3d14590da6e6f0bd76b8e75496117136.squirrel@mail.mohawksoft.com> <559D3884.7010505@gmail.com> <sjmh9pd8mgu.fsf@securerf.ihtfp.org>
On 7/9/2015 9:55 AM, Derek Atkins wrote: > However..... (and this is the big gotcha)... the certification does > not talk about HOW the crypto is used! For example, if you're running > disk encryption the *crypto* can be fully FIPS compliant, but it could > still do something stupid with the FIPS-certified crypto. For example, > it could be using ECB mode instead of some chaining mode. Or it could > somehow store the keys in an unprotected mode. Yup. There is huge misunderstanding about FIPS and CC. There is the assumption that if it is certified then it is good. That's not what the certifications mean. They mean that a product works as documented when used as documented. If the security profile says it should be using CBC mode and it is in fact using ECB mode then it will not pass and it will not be certified. If the security profile says it should be using ECB mode and it does use ECB mode then it /will/ pass or at least it will not fail on this point because the product conforms to the security profile in this regard. If the security profile does not specify then it might pass anyway. Or it might not depending on the testing level. > [...] > this is how it works; my understanding was that if the disk is encrypted > then it wont give you any data without keys. I.e., you cannot verify > the encryption is correct. That's not how SEDs work. Self-encrypting drives are always encrypted using the media encryption key (MEK) stored in the firmware. The MEK is itself encrypted using the key encryption key (KEK). When shipped, the KEK on a self-encrypting drive is null allowing unfettered access to the MEK. When you lock a SED you enter a password or phrase. This is hashed and stored on a small shadow volume on the drive and the MEK is encrypted using the KEK. When the drive is activated in the locked state the host sees only the shadow volume which tells the host that an unlock code is required. You enter the KEK, the firmware compares the hash with the stored hash, and if it matches then the drive decrypts the MEK and tucks it away in volatile memory deep inside the controller. Then the host is told to rescan the drive and voila! it sees the full disk. Verifying the encryption entails replacing the controller with a non-encrypting controller. -- Rich P.
- References:
- [Discuss] NAS: buy vs. build
- From: tmetro+blu at gmail.com (Tom Metro)
- [Discuss] NAS: encryption
- From: tmetro+blu at gmail.com (Tom Metro)
- [Discuss] NAS: encryption
- From: blu at nedharvey.com (Edward Ned Harvey (blu))
- [Discuss] NAS: encryption
- From: warlord at MIT.EDU (Derek Atkins)
- [Discuss] NAS: encryption
- From: abreauj at gmail.com (John Abreau)
- [Discuss] NAS: encryption
- From: blu at nedharvey.com (Edward Ned Harvey (blu))
- [Discuss] NAS: encryption
- From: markw at mohawksoft.com (markw at mohawksoft.com)
- [Discuss] NAS: encryption
- From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] NAS: encryption
- From: warlord at MIT.EDU (Derek Atkins)
- [Discuss] NAS: buy vs. build
- Prev by Date: [Discuss] NAS: encryption
- Next by Date: [Discuss] OpenSWAN VPN
- Previous by thread: [Discuss] NAS: encryption
- Next by thread: [Discuss] NAS: encryption
- Index(es):
