Presentation is loading. Please wait.

Presentation is loading. Please wait.

Mass Storage Media Locking By Curtis E. Stevens WD.

Published byJayson Wright Modified over 8 years ago

Similar presentations

Presentation on theme: "Mass Storage Media Locking By Curtis E. Stevens WD."— Presentation transcript:

1 Mass Storage Media Locking By Curtis E. Stevens WD

2 Agenda The Problem ATA Security OS Detction Possible Approaches

3 The Problem Small or externally attached devices can be lost or stolen –USB –1394 –SATA –PATA –CFA Many of these devices accept SCSI CDB’s as their primary commands

4 ATA Security ATA Security was introduced in ATA/ATAPI-4 in 1997 and has been developed over a period of 7 years Provides the ability to password lock a device Provides a mechanism to erase the media and the passwords in the normal security mode Can turn the drive into a brick if passwords are lost in the high security mode.

5 Commands Security Disable Password –Turns off the password subsystem Security Erase Prepare –Security Erase is a 2 step process Security Erase Unit –Erase the media and as a last dying act, erase the passwords Security Freeze Lock –Prevent changes until the next power cycle Security Set Password –Enable the password subsystem Security Unlock –Open a password protected drive.

6 ATA Security Prevents the average user from gaining access to the data Protects the device, not the data Has been in use and tested for several years Implementation is light and well understood Other more complex methods are still being developed, but ATA style security can be implemented now.

7 OS Detection Some existing operating system standard drivers do not assign a drive letter if they are unable to read the media A locked device needs to be understood as locked –If the operating system does not have the capability to unlock the device it should prompt the user for a driver Detection is probably going to be bus specific

8 Proposal #1 Use the SAT ATA pass through mechanism or create a new SCSI CDB that enables the 6 ATA security commands Use Inquiry byte 1 bit 0 to indicate that a device is locked Define a security mode page to indicate that security is implemented and the current status of the drive

9 Proposal #2 Define a mode page for locking and unlocking Change write same to clear password where appropriate –Require Mode Select prior to write same –Use byte 1/10 bits 3 or 4 to indicate security erase.

Download ppt "Mass Storage Media Locking By Curtis E. Stevens WD."

Similar presentations

Computer-System Structures Er.Harsimran Singh www.ProgrammingPlaza.com.

Computer-System Structures Er.Harsimran Singh
Hard Disk Drives Chapter 7.

Hard Disk Drives Chapter 7.
COEN 252 Computer Forensics Hard Drive Geometry. Drive Geometry Basic Definitions: Track Sector Floppy.

COEN 252 Computer Forensics Hard Drive Geometry. Drive Geometry Basic Definitions: Track Sector Floppy.
Rambling on the Private Data Security

Rambling on the Private Data Security
Flash storage memory and Design Trade offs for SSD performance

Flash storage memory and Design Trade offs for SSD performance
PC Card ATA command Extensions for Small Memory Card MEI(Panasonic), SanDisk,Toshiba Minoru Patrick Ohara(Toshiba)

PC Card ATA command Extensions for Small Memory Card MEI(Panasonic), SanDisk,Toshiba Minoru Patrick Ohara(Toshiba)
Building Dependable Systems. R1. There is a single control button available for the user of the oven. If the oven is idle with the door closed and you.

Building Dependable Systems. R1. There is a single control button available for the user of the oven. If the oven is idle with the door closed and you.
The ATA/IDE Interface Can we write a character-mode device driver for the hard disk?

The ATA/IDE Interface Can we write a character-mode device driver for the hard disk?
Protecting cells in the worksheet from being changed. June 21, 2012.

Protecting cells in the worksheet from being changed. June 21, 2012.
Securing. Agenda  Hard Drive Encryption  User Account Permissions  Root Level Access  Firewall Protection  Malware Protection.

Securing. Agenda  Hard Drive Encryption  User Account Permissions  Root Level Access  Firewall Protection  Malware Protection.
11 BACKING UP AND RESTORING DATA Chapter 4. Chapter 4: BACKING UP AND RESTORING DATA2 CHAPTER OVERVIEW Describe the various types of hardware used to.

11 BACKING UP AND RESTORING DATA Chapter 4. Chapter 4: BACKING UP AND RESTORING DATA2 CHAPTER OVERVIEW Describe the various types of hardware used to.
Windows 8: Windows To Go Overview Zvezdan PavkovicTanya Koval Senior ConsultantArchitect WCL333.

Windows 8: Windows To Go Overview Zvezdan PavkovicTanya Koval Senior ConsultantArchitect WCL333.
Next Keep all food and drinks away from computer and equipment—liquid may spill and cause an electrical shock or the computer not to operate properly.

Next Keep all food and drinks away from computer and equipment—liquid may spill and cause an electrical shock or the computer not to operate properly.
Object-Based Storage HPCC Lab. OBS Architecture OBSD  Storage components of the system to be shared  Disk drives, RAID subsystems, tape drives, optical.

Object-Based Storage HPCC Lab. OBS Architecture OBSD  Storage components of the system to be shared  Disk drives, RAID subsystems, tape drives, optical.
OS2-1 Chapter 2 Computer System Structures. OS2-2 Outlines Computer System Operation I/O Structure Storage Structure Storage Hierarchy Hardware Protection.

OS2-1 Chapter 2 Computer System Structures. OS2-2 Outlines Computer System Operation I/O Structure Storage Structure Storage Hierarchy Hardware Protection.
Architectural Support for Operating Systems. Announcements Most office hours are finalized Assignments up every Wednesday, due next week CS 415 section.

Architectural Support for Operating Systems. Announcements Most office hours are finalized Assignments up every Wednesday, due next week CS 415 section.
Storage Networking Technologies and Virtualization Section 2 DAS and Introduction to SCSI1.

Storage Networking Technologies and Virtualization Section 2 DAS and Introduction to SCSI1.
Computer Storage Devices Principles of Information Technology Lytle High School Click to continue.

Computer Storage Devices Principles of Information Technology Lytle High School Click to continue.
15-Oct-2007 External Path Protection Discussion By Curtis E. Stevens.

15-Oct-2007 External Path Protection Discussion By Curtis E. Stevens.
Secondary Storage Unit 013: Systems Architecture Workbook: Secondary Storage 1G.

Secondary Storage Unit 013: Systems Architecture Workbook: Secondary Storage 1G.

Similar presentations

Ads by Google