Slashdot Mirror

← Back to Stories (view on slashdot.org)

Seagate Ships World's Most Secure Hard Drive

Posted by kdawson on from the laugh-at-lost-laptops dept.

An anonymous reader writes to let us know that after two years Seagate is finally shipping its full-disk encryption product, and you can get your hands on it in a laptop from system vendor ASI.

11 of 148 comments (clear)

  1. Worlds most secure cipher meet ... by tomstdenis · · Score: 3, Insightful

    worlds stupidest user with passwords like 'password' :-)

    Also how are they using AES? I thought P1619 (XTS-AES) is still a draft. Are they betting it will get adopted unchanged? Or are they using some other thing? Please tell me it's not AES in ECB mode...

    Tom

    --
    Someday, I'll have a real sig.
    1. Re:Worlds most secure cipher meet ... by archen · · Score: 3, Informative

      Actually it appears that it is using a CBC, there appears to be a middle layer that arbitrarily partitions sections that are encrypted and decrypted on the fly. I was pretty skeptical the last time this was mentioned on slashdot, but I have to admit this actually looks like a promising product. I'll wait for some more skillful security experts to evaluate it first, but I'm certainly keeping an open mind on it.

    2. Re:Worlds most secure cipher meet ... by Loconut1389 · · Score: 3, Interesting

      I wonder what sector corruption does in CBC mode then? Lose more of the drive? Or have the used some overhead for extra forward error correction?

    3. Re:Worlds most secure cipher meet ... by this+great+guy · · Score: 3, Informative
      Most good hard disk encryption technologies behave in way that if a single bit is flipped in an encrypted sector, then the whole decrypted sector becomes corrupted (and others sectors around this one are not affected). This sort of behavior is desired and help prevent content leak attacks.

      For example, Loop-AES behaves like this in multi-key-v3 mode where CBC is used with an IV computed from a secret key, the sector number, and plaintext blocks [1..n-1] in the sector. This is also how Microsoft Bitlocker behaves because they combine CBC with the Elephant diffuser. When CBC is not used, this property can be achieved using LRW or XEX, or wide-block encryption.

  2. Backdoored? by J'raxis · · Score: 4, Interesting

    Who knows what this thing is doing inside? They're using AES-128 so you may not have to worry about the encryption algo being unsecure, but who's to say this thing isn't caching the password in some place you don't know about (but that the manufacturer and your country's authorities do)?

    --
    Liberty in your lifetime
  3. Oh Goody! by LibertineR · · Score: 4, Insightful
    According to Seagate, any US company that loses a laptop using the Seagate drive in conjunction with the launch security management system from Wave Systems, will not have to give public notification of the loss, even if the data is of a highly confidential nature. This alone guarantees that the technology will find a market given the increasingly costly and embarrassing repercussions of laptop thefts.

    Who cares if this gets cracked by Tuesday, bitches?

    The selling point is that the banks wont have to tell you when Bubba leaves his laptop on the CAL TRAIN with your credit card data in standby mode, cause its encrypted!

    I feel so safe!

  4. And in next year's news... by dpbsmith · · Score: 5, Funny

    it will transpire that ...Los Alamos National Laboratory misplaced a notebook full of top-secret data in which the encryption had never been turned on... ...a Microsoft executive lost a notebook full of plans for dirty ways to undermine Open Source, after sticking Post-It note to the screen to remind him of his wife's birthday, which he used as his password... ...all the scientific data from a major NASA mission costing $1.63 billion were stored on a contractor's laptop, who had encrypted all of it, chosen a good password, never wrote it down, and got hit by a bus without telling it to anyone... ...but NASA was able to recover the data by asking the FBI, which knew the backdoor and had been reading every NASA contractor's hard drive without a warrant.

    --

    "How to Do Nothing," kids activities, back in print!

  5. Back Door For Big Brother ? by Junior+Samples · · Score: 3, Insightful

    Seagate is an American Company. Is it possible for them to provide a secure product without providing a back door for Big Brother to access? Can they be trusted? I'm very skeptical.

  6. Re:3gb/s sata on a 5400 rpm drive? by MightyYar · · Score: 4, Insightful
    Wild speculation here, but it could be one or more of the following:
    • They sell a lot of drives with a lot of different speeds. It might be cheaper for them to standardize on a few chipsets then to buy different chips and have different designs based on the drive's capability.
    • For marketing reasons, they may have decided to always have the latest-and-greatest buzzword on the box of all of their new products.
    • A major customer asked them to use this interface.
    In all, not the strangest decision I've come upon today.
    --
    W..w..W - Willy Waterloo washes Warren Wiggins who is washing Waldo Woo.
  7. The incomplete article is missing any mention... by BenEnglishAtHome · · Score: 5, Informative

    ...of the competitors in this market space. Several companies have been doing this for years with good track records. I think these links are still good.

  8. No need to blame the user. by twitter · · Score: 4, Insightful

    worlds stupidest user with passwords like 'password' :-)

    That's a joke, but some people really think that way. Blaming "stupid users" makes them feel more secure or helps them pass the buck for choosing systems with poor security. When you think about it, it's not very funny.

    Passive encryption might be a step in the right direction, but I won't trust it as long as the software doing has owners and secrets kept from users. They can point to specs and tell me what they are doing, but that does not mean they are doing that. The owners can break in at will, the keys can be padded with zeros and finally, the owners can make mistakes.

    --

    Friends don't help friends install M$ junk.