By Joris Evers, 31 October 2006 08:25
NEWS
Hard-drive maker Seagate Technology has provided more details on encryption technology designed to make life tougher for computer thieves.
The storage company has developed full-disk encryption technology that can be built into hard-disk drives. The new Seagate DriveTrust Technology automatically encrypts all the data written to the disk, making it inaccessible to anyone who doesn't have the correct password when the computer first boots up.
Scott Shimomura, senior product marketing manager at Seagate, said: "It is a new way of thinking about what the capabilities are of the hard drive, beyond just storage."
Data breach and privacy legislation has made security a hot topic, in particular for portable PCs and storage devices. In the past year, major organisations, including the US Department of Veterans Affairs and Fidelity Investments, have had to report embarrassing security breaches after hardware containing personal data on people went missing.
Shimomura said: "The primary market right now is the mobile computing market, because there is so much sensitive data that is being stored on notebooks. But we view DriveTrust as something that can be used in all drives."
DriveTrust is already available in Seagate's DB35 disk drives for digital video recorders and other digital entertainment devices. In the first quarter of next year, the company plans to ship a hard-disk drive for laptops that features the technology, called the Momentus 5400 FDE 2.
Got two seconds?
Make your voice heard - take our latest poll.
Seagate pitches its encrypting hard disk as an alternative to full-disk encryption software such as products sold by PGP and PointSec Mobile Technologies. Additionally, high-end editions of Microsoft's upcoming Windows Vista operating system include an encryption feature called BitLocker.
Enterprises and other organisations will be able to manage passwords and encryption keys by using third-party software, Shimomura said. Wave Systems and Secude are working on providing such tools, he said. If a password is lost, the drive could be reset by Seagate but there would be no way to get to the data.
Drives with the technology will cost more than regular drives but Seagate declined to specify the price premium.
Joris Evers writes for CNET News.com
Comments
There is 1 comment. Join the discussion
1. Joe Whitehead
There had better be an option in the bios of laptops sold with this, to only password the data and not encrypt it for those that worry about data loss more then a nice little bonus that comes with their new laptop or a used (erased, reloaded, resold aka recycled) corporate laptop. Also, I'm sure that law enforcement must have a backdoor (or there must be less secure keyspace firmware for some markets).
Another issue is that if I reformat the drive with another password, there better be no way to get at the crypttext sectors after the new data. This implies that running the 'restore' disk and overwriting the old drive even partially with a new password should be effective - though I'd still use a zero fill with a throwaway password at the minimum, heh.
I have some questions though for the editor/author: If I have my password for a drive, is there a way besides taking it back to Seagate, of recovering the data? I mean, if I go to a data recovery place, are they going to tell me "Sorry, should have backed it up after that document you want." or such? Is Seagate going to lock out the data recovery people in the name of 'security' (read: roadside robbery) by making it tied into not just the password, but the bios version and serial number?
Note: Roadside robbery means to charge a fortune to give aid to a desperate person.