Finisterre
Professional
This may be relevant for discussion here...
Self-encrypting deception: weaknesses in the encryption of solid state drives (SSDs)
Abstract—We have analyzed the hardware full-disk encryption of several SSDs by reverse engineering their firmware. In theory, the security guarantees offered by hardware encryption are similar to or better than software implementations. In reality, we found that many hardware implementations have critical security weaknesses, for many models allowing for complete recovery of the data without knowledge of any secret.
BitLocker, the encryption software built into Microsoft Win- dows will rely exclusively on hardware full-disk encryption if the SSD advertises supported for it. Thus, for these drives, data protected by BitLocker is also compromised.
This challenges the view that hardware encryption is prefer- able over software encryption. We conclude that one should not rely solely on hardware encryption offered by SSDs.
Self-encrypting deception: weaknesses in the encryption of solid state drives (SSDs)
Abstract—We have analyzed the hardware full-disk encryption of several SSDs by reverse engineering their firmware. In theory, the security guarantees offered by hardware encryption are similar to or better than software implementations. In reality, we found that many hardware implementations have critical security weaknesses, for many models allowing for complete recovery of the data without knowledge of any secret.
BitLocker, the encryption software built into Microsoft Win- dows will rely exclusively on hardware full-disk encryption if the SSD advertises supported for it. Thus, for these drives, data protected by BitLocker is also compromised.
This challenges the view that hardware encryption is prefer- able over software encryption. We conclude that one should not rely solely on hardware encryption offered by SSDs.
