Avago Technologies MegaRAID Fast Path Software User Manual

Page 51

Advertising
background image

LSI Corporation Confidential

|

July 2011

Page 51

MegaRAID SAS Software User Guide

Chapter 3: SafeStore Disk Encryption

|

Instant Secure Erase

You might not want to lock your drives because you have to manage a password if they
are locked. Even if you do not lock the drives, there is still a benefit to using encrypted
disks.

If you are concerned about data theft or other security issues, you might already invest
in drive disposal costs, and there are benefits to using SafeStore encryption over other
technologies that exist today, both in terms of the security provided and time saved.

If the encryption key on the drive changes, the drive cannot decrypt the data on the
platters, effectively erasing the data on the disks. The National Institute of Standards
and Technology (

http://www.nist.gov

) values this type of data erasure above secure

erase and below physical destruction of the device.

Consider the following reasons for using instant secure erase.

If you need to repurpose the hard drive for a different application.

You might need to move the drive to another server to expand storage elsewhere, but
the drive is in use. The data on the drive might contain sensitive data including
customer information that, if lost or divulged, could cause an embarrassing disclosure
of a security hole. You can use the instant secure erase feature to effectively erase the
data so that the drive can be moved to another server or area without concern that old
data could be found.

If you need to replace drives.

If the amount of data has outgrown the storage system, and there is no room to expand
capacity by adding drives, you might choose to purchase upgrade drives. If the older
drives support encryption, you can erase the data instantly so the new drives can be
used.

If you need to return a disk for warranty activity.

If the drive is beginning to show SMART predictive failure alerts, you might want to
return the drive for replacement. If so, the drive must be effectively erased if there is
sensitive data. Occasionally a drive is in such bad condition that standard erasure
applications do not work. If the drive still allows any access, it might be possible to
destroy the encryption key.

Advertising
This manual is related to the following products:

MegaRAID SAS 9240-4i, MegaRAID SAS 9240-8i, MegaRAID SAS 9260-16i, MegaRAID SAS 9260-4i, MegaRAID SAS 9260-8i, MegaRAID SAS 9261-8i, MegaRAID SAS 9280-16i4e, MegaRAID SAS 9280-4i4e, MegaRAID SAS 9280-8e, MegaRAID SafeStore Software, MegaRAID SAS 9361-4i, MegaRAID SAS 9361-8i, MegaRAID SAS 9266-4i, MegaRAID SAS 9266-8i, MegaRAID SAS 9270-8i, MegaRAID SAS 9271-4i, MegaRAID SAS 9271-8i, MegaRAID SAS 9271-8iCC, MegaRAID SAS 9286-8e, MegaRAID SAS 9286CV-8e, MegaRAID SAS 9286CV-8eCC, MegaRAID CacheCade Pro 2.0 Software, MegaRAID SAS 9341-4i, MegaRAID SAS 9341-8i, MegaRAID SAS 9380-8e, MegaRAID SAS 9380-4i4e

Popular Brands
Popular manuals