Slashdot Mirror
Self-Encrypting Hard Drives and the New Security
In a recent blog post, CNet's Jon Oitsik has called for a policy shift with respect to data encryption. A new standard by the Trusted Computing Group promises the availability of self-encrypting hard drives soon, leading some to call for immediate adoption. Will this create even more security problems due to lazy custodians, or should someone responsible for keeping your information safe be required to move to the new hardware? Hopefully the new hardware comes with a warning to continue to use other data protection measures as well.
Oh there's a warning, it's just been encrypted for its own protection.
-=Bang Bang=-
Never has a backdoor!
Hopefully they're also self-decrypting. Although it would certainly be more secure without this feature.
There's no -1 for "I don't get it."
An additional layer of encryption can't be bad. If it's a good implementation with no critical bugs and backdoors, great, you've just made it harder for someone to get your data. If it isn't, it's still no worse than storing plain text.
Just don't rely on this as your only security measure.
Proud member of the Ferengi Socialist Party.
After all, what's the point of having all your data on a disk that you can't access? It's far more likely that the user(s) will forget the key, than for the drive to fail. However, the result will be the same in both cases: inaccessible data and if past experience is anything to go by, no backups (which would also have to be encrypted, again with the isssue over keys).
Until the average PC user radically rethinks their attitude towards their computers - whether at work or play, this seems just one step too far.
politicians are like babies' nappies: they should both be changed regularly and for the same reasons
if encrypted hard drives become the norm, will authorities be more apt to treat it as a protected right rather than as a method of hiding shit?
Self encrypting drives have been available for years already. However, they are always behind the curve - small and slow.
Excuse me, but please get off my Pennisetum Clandestinum, eh!
It's hard to do with fixed drives, but I want USB drives and memory sticks that come with their own dongle-key that plugs into the storage device, so they key can be separated from the drive. Even better if it has its own keypad or fingerprint reader for authentication. "Something you have, plus something you know."
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
Spoken (or typed in this case) like someone who's completely misunderstood the security process and thinks that [Insert Buzzword] = Security
Chas - The one, the only.
THANK GOD!!!
While the focus will be on preventing data from being accessed when the PC is stolen, this will come with the rather severe side effect that a significant number of users will irreversibly lock themselves out of all their data by losing/forgetting their pass phrase. Too bad you can't reduce the first problem without increasing the second.
Against stupidity, the Gods themselves contend in vain. --Friederich Schiller
If it's a proprietary system where some insecure company or insecure government agency has the keys, why even bother? If anything, it's only providing you with a dangerously false sense of "security."
SJW: Someone who has run out of real oppression, and has to fake it.
I want some of what this guy is smoking. He seems to be under the impression that, because the encryption is handled in hardware, there will be no software to deal with. And what, pray tell, will configure the hardware, and set crypto keys, and hold them in escrow in case of the inevitable forgetting, and change them if needed, and so on and so forth?
Hardware encryption certainly has its advantages; but if you can't handle deploying software encryption now, I'm deeply skeptical of your ability to handle deploying hardware encryption.
Even if the standard drive firmware doesn't do that, how would you know that the firmware of the drive wasn't modified sometime after manufacture and before purchase to install such a back door?
If you were an agent of some government that wanted to be able to access data on disk drives whose owners believe them to be encrypted, what better way to do that than to either convince the drive vendors to install a back door for you, or to let you tamper with the drives at some point in the process? That would eliminate a whole lot of hassle for you, and there are only a few drive vendors you'd have to subvert.
I think I'll stick to LUKS and dm-crypt. It's not a perfect solution, and it's still possible that someone could subvert my encryption, but doing it in the software I have some measure of control over clearly makes it harder for them than doing it in hardware that I have no choice but to trust blindly.
Am I paranoid? Sure. Probably no one is trying to steal my keys or my data. But the likelyhood of the existence of a back door has NOTHING to do with whether the bad guys (or maybe the good guys?) are interested in my data. Even if no one intends to steal my data today, once a back door exists it can be used against me in the future.
Some of the online stores are already selling "encrypted hard disk drives". The firmware stores an encryption key that is used to process all data as it goes on and comes off the disk drive platters, so the data is encrypted at all times. When you want to erase the drive, you just change/erase the encryption key.
It sounds like a good idea, but can the encryption key be recovered. Is it really erased, or just shuffled to an alternative backup array encryption keys? Or does the manufacturer keep a list of serial numbers/original encryption keys just in case.
If not, how would data recovery service be able to recover the data off a disk drive in a clean-room environment without the dedicated firmware?
Vintage computer adverts: http://www.vintageadbrowser.com/computers-and-software-ads
I hope this proposal is considered with more than the usual amount of skeptical reserve. The name was changed more than once but I'm fairly certain that the "Trusted Computing" group was previously acting as a lackey of the entertainment cartel. They managed to introduce new points of possible breakage making computer based media more prone to failure (e.g. HDCP and the forced failure of expensive monitors purchased by early adopters).
If this is the same group then you can almost guarantee that they will include backdoors and other nastiness intended to inhibit unapproved behavior by the owner of the drive.
My work hard drive is encrypted with Safeboot and it's slow as hell. If hardware encryption can improve the performance it'd be worth it for me.
Whale
All of my sensitive data is double-ROT-13 encrypted!
So while the disk is self-encrypting itself, what if the power went out?
Complete data corruption/loss?
Or are you gonna mandate that everyone uses a UPS?
Mod points are a dangerous tool. Abuse them wisely.
Three problems with the idea:
#2 can be dealt with going forward in the hardware and OS. #1 can be dealt with going forward with standardized encryption and hardware protocols. #3... is intractable.
...is worthless. Proprietary, chip-based solutions are the opposite direction we should be going. An open source solution...and there are several great ones already available...is what I use and recommend/setup for all my clients.
Any and all of today's processors can handle the exertion necessary for on-the-fly encryption; most users (including, generally, myself) don't notice the difference.
As per usual, I question SM's logic.
Just as important as the technology will be the legal framework that applies. Myself, I like the Bill of Rights and I want to see data storage be treated as an extension of my memory with all rights that apply to my testimony extended to the digital media that is protected by a key that is in my memory. I know, naive idealism is dumb.
Oh good, so now I need a special driver with which to decrypt my hard drive, so it won't work with the Linux or BSD kernels.
I would buy such a product (encrypted HDD or encrypted SATA/SAS [RAID] controller) if it were completely open (as in GPL-compatible) firmware, open specs, and solid assurances of fair play with respect to patents, etc. Especially if the encryption/decryption is performed on a dedicated chip so as to keep resource costs from growing.
... and battery back-up (like other hw RAID controllers), confirmed writes via journal for data integrity, ... hmm, I have some high demands. Maybe I'll just stick with TrueCrypt.
Use my userscript to add story images to Slashdot. There's no going back.
How can a security-conscious end-user verify that my data is encrypted on one of these drives, as opposed to simply being stored in the clear and the drive just refusing to read it? Sure seems it'd be cheaper if they just left out the crypto and had the drive lie, taking only a few hundred bytes of extra firmware and no extra processing power to implement the new "encryption" command set. Who's going to know?
Nothing like a generic, corporate, marketing-driven name to inspire my utter distrust.
Self-encrypting hard drives would be a great thing IF they have a flexible and open firmware, with interchangable open source modules for algorithms. After a simple command to pass the key its accessed as a regular drive with no additional overhead for the computer.
With a closed proprietary approach those who need it will be too skeptical to use it, and it may just cause more trouble than it is worth.
How will you know if your data was encrypted?
Deleted
My experience with hardware encrypted media makes me doubt anything good will come of this technology.
We had a large number of encrypted thumb drives, at one point, and all of them died and needed to be reformatted in short order... they were simply more vulnerable to data loss when (for example) you pulled them "too soon". One vendor wouldn't even allow us to reformat them without sending them a signed letter from the CEO (on corporate letterhead) asking for the formatting utility, and then when we provided it we got no further response from them.
We turfed all the "secure" thumb drives no matter what manufacturer and went back to application layer encryption.
Personally, I can't wait for these to become commonplace. I use whole disk encryption not because I don't want my partner/friends accessing my data (my computer's on all the time anyway in an unencrypted state any business documents and porn are tucked away using TrueCrypt), not because I'm scared of LEOs or G-men (they're welcome to my files), but because I don't want some prick burgling my house, plugging in my hard drive to their computer, and posting my photographs and poking around looking for passwords to sell. So bring on the back doors, I can remember my passwords, and anyone with the knowledge to hack the hard drive to get at the data is doing it for more than my photos and old university papers. I can change my passwords faster than they can sell them.
http://www.collude.biz - Ignore this, it's for Project Honey Pot.
If there were multiple keys, each one of which could unlock the drive this would be fine. The owner, i.e. the IT dept., gets the main key and the user and others get backup keys.
One way to implement it:
The drive will accept either its on-board key or a key from a dongle. The on-board key of course will be encrypted with a passphrase that can be changed without changing the underlying key. If EITHER the passphrase is entered OR another copy of the key with ITS passphrase is present, the drive is unlocked.
Paranoid users could invalidate the on-board key, requiring the use of a dongle to unlock the drive.
Another option:
A 3-layer version, where a heavily-encrypted "super key" is on the drive, with multiple "supplemental keys" which may or may not be on the drive which decrypt the super key AND which define access, e.g. a "read only" key, a "read/write key," and an "administration key." Zero or more of these could be stored on the drive, encrypted with passphrases. Others could be stored on dongles, again, encrypted with passphrases. In this scenario, IT would control the administrator key and the person in possession of the laptop would control the read-write key and the read-only key. The read-only key would be turned over in response to subpoenas or customs officials where required by law. In draconian societies like America^H^H^H^H^H^H^H China, an additional, non-removable backdoor key would probably be held by the government.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
surely the worst part of any of this is the prospect of only 'certified' software applications able to do I/O on one of these hardware based encryption discs - think region encoded DVDs. i bet RIAA and the rest of the IP hounds cant wait for this one to go mainstream.
- yummy rootbeer.
3. Law enforcement. If the drive encryption is truely secure, LEOs will insist on having a back-door to let them decrypt a suspect's drive to search for evidence even if the suspect won't give them the passwords. If such a back-door exists, it'll quickly be broken and software produced to gain access to an encrypted drive through that channel rendering the encryption useless.
#3... is intractable.
The solution is to create a society where LEOs do not insist on having a back-door.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
I wouldn't worry too much about children shooting porn and storing it on their laptops. Everyone knows they prefer to use cell phones.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
http://cooldrives.stores.yahoo.net/xb2usb20enha.html
It seems reasonable to wait until the third generation of self-encrypting drives. Let everyone else experience the lost data.
Until then, Truecrypt is fine, and has the advantage of not being proprietary. Since the government believes it can operate in secret, proprietary systems may be forced to install back doors.
In theory, if these drives are being used by a US government agency for encryption, then the drives need to be FIPS 140-2 certified.
In order be certified, there is a stringent list of algorithms that may be used, for both encryption and random number generation, and these algorithms need to be tested and certified themselves.
We'll have to see if the hard drive companies want to go through the headaches involved to get FIPS certification, or whether this is meant as a gimmick for consumers.
I have one of the seagate encrypted drives. There is nothing about them that is tied to a specific motherboard or TPM chip. The encryption keys are protected by a password, and there are a couple of ways to provide the password to the drive. The computer manufacturer can implement this functionality in the BIOS, and have it prompt for the password on boot (this is what Lenevo does). Alternately the MBR is not encrypted, so you can install a boot loader that prompts for the password, passes it onto the drive and then continues booting (this is what Dell does, using software from Wave Systems).
As long as you remember the password, you can access the drive in another computer. Furthermore, the drive can have upto 5 passwords - an administrator password, and 4 user passwords. A competent computer support center will set the administrator password when they image the machine, handling proper key management across the organization, and have the user select a separate user password. This should should make the chances of not being able to access an encrypted drive low enough for practical purposes.
If the key or passphrase is coded into the system configuration, the perp can see the data, anyway. So surely they would set up these systems so it is required for the assigned user to enter a passphrase for access, perhaps even periodically instead of just when booting or waking up. Then we are back to the weakness of people. Just flip the laptop over and get the key written on the bottom, or just find out the person's spouse's mother's dog's name.
now we need to go OSS in diesel cars
In my limited experience, what will happen if this was adopted on a wide scale is millions of people will loose their only copy of the grandkids photos and it will be a complete pain. Drives fail more often then they are hacked or used for something that needs that level of security. More typically the whole machine is stolen. It would not for example protect you from a OS level virus, or general internet stupidity.
How often is data stolen from the average user, where the thief has access to the hard drive, and also the knowledge and interest to go dumpster diving in to say a stolen laptop?
My point is that it should be a totally optional or specialized segment thing, not something used across all stock hard drives.
Living in Chile
If it is not securely implemented then people will break it and eventually one of these people will be a white-hat, and will let the community know. If the manufacturer had advertised that the drives were encrypted, and they were in fact not, they will be hit with some pretty damn big lawsuits. Even if the exploit was just a mistake they will likely lose a good number of sales over it.
I don't think this is a risk that any of the major drive makers would be willing to take of for a quick buck. El-cheapo flash drive makers, sure, but not Seagate, Western Digital, or Hitachi.
Joshua
I just lost a brand new Samsung 120G drive because my laptop happened to (somehow) send a random password to the ATA drive lock mechanism. Now the drive is a brick :(
I'd prefer mandatory antivirus file system for windows machines.
Having to work for a living is the root of all evil.
Hence, the "plus something you know" part.
A compromised biometric system is no better than a plain password so it's better to use a smartcard to start with and not risk the biometric hole. Think of biometrics as an unchangeable PIN.
There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
Think of the Children-Terrorists!
Were you my babysitter when I was 5?
Sorry about setting your hair on fire and spilling Kool-Aid on your books.
Having the disk drive processor or special-purpose logic on the drive do the encryption/decryption is a fine division of effort.
But until the firmware is open (and there's a way to check that it's what's really running) I won't use such a thing. (Except maybe in transparent mode with the REAL crypto being in software on the machine.)
There are too many opportunities for data compromise with built-in, proprietary and closed, firmware encryption: Faulty design, government back doors, and bad-guy back doors to name just three.
Bantam Dominique roosters crow a four-note song. Once you've heard it as "Happy BIRTHday" you can't NOT hear it that way
Proprietary encryption is always a bad idea. It doesn't matter what the proprietor's claims are (including what algorithm they claim to use). The only way to verify that there are "no critical bugs and [no] backdoors" is to either verify and compile source code yourself or have a trusted party do this on your behalf. Any software to do this job is complex and all complex software has bugs. You need the freedom to inspect, modify, share, and run the program any time you want. I doubt that software-based encryption is what slows people's read or write access to modern hard drives with modern computers.
Also, as for other people getting your data it really depends on who those other people are. Threats of physical harm or imprisonment (which aren't mutually exclusive) has been very good at getting people's security credentials from them.
Digital Citizen
I honestly can't tell if you think he was serious and are replying seriously, or if you're just trying to lead everyone else along... *head scratch*
I think it is a good idea to write down the passphrase and store it in your wallet.
I have several written down and stuck on the back of an expired credit card. The passphrases were generated randomly and consist of at least 8 random chars (upper/lower & digits).
That is the first part of the passphrase, the other is a smaller less secure portion that I remember.
Together I feel this is very strong, because I keep good tabs on my wallet and even if lost, the total passphrase remains unknown (unless I'm tortured). It is unlikely that I will lose both my laptop and my wallet together though.
This verifies that the passphrase can withstand strong brute force. and that the total passphrase is never written down.
I was just reading the EFF suggestions and saw this: https://ssd.eff.org/your-computer/protect/passwords (notice: "Carry your passwords on paper, in your pocket")
Because someone who has taken your little finger to circumvent biometric security might somehow have a moral dilemma about torturing you for your password/PIN? Or that you're going to feel a desire to risk more limb and life for the sake of this security? (Obviously, if you're USSS, maybe...)
But in corporate environments, I could imagine a case where the drives could be decrypted with two different keys: a user key specific to the drive, and a master key maintained by the IT department. For the master key, different people know different parts of the key (or, for example, half the key is stored in one safe deposit box and the other half in a different box where access to the boxes is by different people). Then, on the disk, the data is encrypted with the user's key, and the user's key is also placed on the disk, itself encrypted with the master key.
Now, if a user forgets their key, it's possible to still get their data, albeit it's more of a pain in the ass.
Jim: lets sell self-encrypted harddrives Bob: too whom? Are there people that wander around with plain ole harddrives in their briefcases. Jim: No, but the average Joe will buy them, especially when we scare them with threats of invasion just because they their taxes on thier pc. Jim: profit. Sure, it may prevent your hd from being raped when it's stolen by some goon that peddles crack on the corner. But if someone really wants your data AND has your hd, it's a matter of time.
>once exposed they cannot be changed to avoid further compromise
Biometrics don't have to be secret. The picture on your driver's license is a biometric.
We're used to thinking in terms of secrecy because passwords have to be secret. They have to be secret because that's the only way to ensure an exclusive relationship between a person and a password. Your exclusive relationship with your face, retinal blood vessel pattern, or fingerprint depends only on having them attached to you (a dependency which leads to one of the real attacks on biometrics).
You need secrecy to make a password usefully secure. To make biometrics secure you need a trusted reading system that can distinguish between copies and originals. A "reading system" can include the human security guard at the entrance who will stop people from holding severed hands up to the handprint reader.
If you depend on keeping biometrics secret then you're doing it wrong.
Hello,
I'm From The Federal Government Purchasing Authority. As You Know, The Federal Government Is The Largest Purchaser Of Hard Disk-Equipped Devices In The World. We'd Love To Put Your New Self-Encrypting Hard Drive On Our List Of Devices Approved For Purchase, But First We Require Your Cooperation In Implementing Some Features.
The Nsa And Fbi Have Some Concerns That This Particular Product May Be Used To Facilitate Illegal Behavior: Terrorism, Child Pornography, Piracy Of Major Feature Films, Among Other Threats To Public Safety. So, They'll Require A Way To Decrypt Any Such Device Without The Consent Of It's Owner. Only Then Will We Be Able To Make Our Sizable Initial Purchase Of Your Devices.
Should You Choose Not To Cooperate With Us In This, We May Be Forced To Re-Open Any Previous Approvals We've Given Other Products That You Produce. Also, The Irs May Have Some Questions About Certain Of Your Executive Compensation Practices.
As Businessmen And Patriots, We're Sure We Can Count On Your Cooperation In This.
Sincerely,
John Apparatchik
Purchasing Requirements Conformity Director
National Institute of Standards and Technology
United States Department of Commerce
I find this wrongly directed. What is really needed is not an encrypted drive that has a password that can be forced from you, by legal or illegal pressure, but a drive that decrypts one way (innocent stuff on it) with one password and another way (the really good stuff on it) with another password. The bad guys, whether they are DHS goons or real terrorists, will always be able to get the goods on you, your real need is something that looks innocent but hides your real stuff elsewhere.
It's not only that you cannot trust companies with encryption (the state will insist on a secret backdoor, every time), but if you are caught with a laptop at, say, the border while entering the USA, these guys will do one of two things (or both):
a) confiscate the laptop
b) Force you to give them the key: http://xkcd.com/538/
Encryption might be useful to hide data from your kids/cow-orkers/opponents, but that's about it.
Free PC version of ChipWits at http://www.breueronline.de/klaus/chipwits/
Actually, this is about a new specification created by the Trusted Computing Group, so it's fairly open stuff. However, I fail to see how this actually solves any of the problems related to recent data breaches.
Trusted Computing Group is about implementing a DRM platform. To protect their copyrighted material from you, the owner of the hardware.
I'd surely end up locked out of my own data.
http://www.AmherstburgVisionCentre.com
This is a backdoor into DRM of your own data - systemic agency theft.
TCG is an oxymoron