|
Home | Contact Us | How to Buy | FAQs | Login |
 |
 |
 |
 |
 |
 |
 |
 |
ApplicationsStorageStorage security has become the most important issue for IT managers due to the loss of laptops, data being recovered from surplus computer disk drives and even tapes being misplaced by otherwise reputable companies offering off-site storage services. It is now clear that the industry must respond with a comprehensive security standard for data at rest and Elliptic has developed solutions which span all aspects of storage security. The IEEE (draft standard P1619.1 - Standard Architecture for Encrypted Shared Storage Media) is now nearing ratification and is primarily targeted at encrypting information stored on tape for back-up purposes. It calls out the implementation of either GCM-AES or AES-CCM as the symmetric encryption cipher for this standard. Elliptic offers a variety of solutions for these algorithms ranging in performance from 100 Mbps up to 5 Gbps depending on the class of tape drive being targeted. The following cores can be applied to tape storage security applications:
The IEEE is also working on a companion disk security standard - P1619. The emphasis here is primarily on RAID arrays where a disk might be physically removed by an insider intent upon accessing sensitive corporate information. The standard has recently been updated to replace the LRW-AES cipher as it exhibited vulnerability to certain attacks. The latest algorithm now in final balloting at the IEEE is referred to as the XTS-AES (and in some contributions as the AES-XTS) algorithm. Storage applications must have sophisticated key management designs. This in turn will frequently leverage encrypted key blobs which can be stored in memory such as RAM caches, Flash or on tape and disk. To facilitate the secure storage of key blobs, NIST and the IETF have developed an algorithm for key wrapping that uses the advanced encryption standard. The CLP-34 implements the AES key wrap (encryption) and key unwrap (decryption) algorithms. |