Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Toshiba Drives Wipe Data When Turned Off

Posted by CmdrTaco on from the how's-that-gonna-work dept.

CWmike writes "Toshiba on Tuesday introduced a new hard drive feature that can wipe out data after the storage devices are powered down. The Wipe feature in Toshiba's SED (Self-Encrypting Drives) will allow for deletion of secure data prior to disposing or re-purposing hard drives, Toshiba said. The technology invalidates a hard-drive security key when a system's power supply is turned off. The new Wipe capability will go into future versions of the SED drives, for which no timeframe was given. Beyond use in PCs, Toshiba wants to put this feature on storage devices in copiers and printers."

13 of 239 comments (clear)

  1. Lots of uses for this technology... by mlts · · Score: 5, Insightful

    I can see this used not just in copiers where temporary files need to be zapped for privacy reasons, but in a number of other places:

    1: Photo kiosks.
    2: Documents stored on public access computers.
    3: Medical terminals used for X-ray viewing.
    4: Cash register terminals for storing CC data.
    5: CCTV DVRs. If a video time frame needs flagged for long term copying, it is.
    6: Proxy/sendmail log servers where logs don't have to be kept for longer than it takes to check if there is an intrusion.
    7: Temporary scratch space for a database server, say to pack and unpack normally encrypted BLOB/CLOB data.
    8: A special hard disk just for /tmp. If one thinks about it, this type of HDD is absolutely perfect for the /tmp filesystem in the classic sense of it being zeroed out on reboot.
    9: Temporary scratch space when unarchiving data and putting it on a secure partition or tape drive. For example, getting data from tape or another site, storing it temporarly to get a machine to restore locally.
    10: A machine set up and automatically imaged for guests to browse the Web.
    11: A machine set up and autoimaged in a student computer lab. This way, a power cycle ensures that private data is not recoverable from the previous student.
    12: Drives set up for swap. This way, a power cycle removes all traces of a virtual machine's paging.
    13: Community clouds, where a VM is cloned to the drive, used to give better capacity, then shut down and the drive cycled so the next user on that drive doesn't have access to the previous user's data.
    14: A place to decode encryption keys temporarly pulled out of a HSM to be copied to another source.
    15: Airport X-day machines so the private pictures of people stay private.

    1. Re:Lots of uses for this technology... by von_rick · · Score: 2, Insightful

      Most of the applications you have listed are subsets of no.8 on your list, "A special hard disk just for /tmp".

      --

      Face your daemons!

    2. Re:Lots of uses for this technology... by compwizrd · · Score: 3, Insightful

      You've got some redundancy in your list there!

    3. Re:Lots of uses for this technology... by afidel · · Score: 2, Insightful

      Doesn't matter, if it's doing AES256 correctly the universe will die of heat death before you can brute force the key. Unless someone comes up with a significant attack against AES256 I wouldn't worry about the recoverability of the encrypted data.

      --
      There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
  2. It's just a RAM disk then? by Dynamoo · · Score: 2, Insightful

    Remember RAM disks? Kind of an eighties thing I guess..

    --
    Never email donotemail@WeAreSpammers.com
  3. Yeah, that's great journalism by overshoot · · Score: 4, Insightful
    Somehow I don't think that Toshiba is quite so stupid as to build what TFA describes: a laptop drive that wipes itself after the power is turned off.

    My bet is on the usual baked-in drive encryption, very badly described.

    --
    Lacking <sarcasm> tags, /. substitutes moderation as "Troll."
  4. Re:deep freeze is better then reimage on boot fast by Galestar · · Score: 3, Insightful

    This isn't "reimage on boot". This is encrypted storage whereby the key is volatile. There is not performance problem here.

    and to reply to OP, this tech really doesn't have as many uses are you say. It is really only useful for sensitive data. You can use it for /tmp, but there's really no point. Cleaning /tmp with software can be done pretty quickly - why buy expensive hardware?

    --
    AccountKiller
  5. "...invalidates a hard-drive security key..." by John+Hasler · · Score: 2, Insightful

    Well, the local copy, anyway...

    --
    Warning: this article may contain humor, sarcasm, parody, and perhaps even irony. Read at your own risk.
  6. Re:I find this hard to believe by Anonymous Coward · · Score: 1, Insightful

    Of course there that unfortunate possibility that the drive had just decided to relocate the sensitive data and mark it as unusable, in which case shred is no better than urandom..

  7. Re:I find this hard to believe by txoof · · Score: 2, Insightful

    That's why the really paranoid can always pull out the platter and inflict whatever thermite hell they want on it.

    --
    This one's tricky. You have to use imaginary numbers, like eleventeen... --Hobbes
  8. tmpfs just folds these into item 12 by tepples · · Score: 2, Insightful

    [Put] /tmp/ on tmpfs [and] enlarge the default swap size by what is expected for /tmp/, to make sure max virtual memory capacity doesn't suffer.

    Once you start using tmpfs, sensitive information will accumulate in the swap file. This makes pseudo-volatile drives like these even more suited for item 12 (swap).

  9. Re:Not deleted, encrypted by tepples · · Score: 2, Insightful

    Toshiba's in for one hell of a liability issue if their encryption is ever cracked

    A meaningful crack for industry-standard ciphers such as AES would make just about every firm in the IT world "in for one hell of a liability issue".

  10. True, it /could/ by overshoot · · Score: 2, Insightful

    But somehow I don't think that the global market for tmp/swap drives is the Next Big Thing.

    --
    Lacking <sarcasm> tags, /. substitutes moderation as "Troll."