advertisement
21.4 Encryption Algorithms
21.4.1 Advanced Encryption Standard (AES) Support
AES encryption is implemented in hardware, with support for ECB or XTS mode for 128 bit or 256 bit keys. A single key is active at any one time within the AES hardware engine. Firmware is responsible for reading the keys from the hardware and also for determining which key is attached to a given LBA range; the hardware can only detect if the LBA has been encrypted or not. The TCG protocol does not allow for a user to choose or switch between AES algorithms, so it is up to the vendor to choose which AES algorithm is used in their implementation. The HGST TCG SSC implementation in firmware supports
AES 256-XTS only.
21.4.2 Level 0 Discovery Vendor Specific Data
This section refers to section 10.2.14 of the TCG Storage Security Subsystem Class document (see the Specifications section of this document). Table 2 of Section 10.2.14 displays a "Vendor Specific" section in bytes 16 to 47. This Vendor Specific section is documented below.
Table 218: Persistent Reserve In (5E)
Byte
16
17
20
21
18
19
22-47
7
RSVD
RSVD
6
MB_s
MB_e
5
Bit
4 3
Version (set to 0)
Vendor Specific State Information
2
0
0
0
Reserved
Diag_s
0
Reserved
Diag_s
Reserved
Dload_s
Dload_e
1
Locking_s
Locking_e
0
FDE_s
FDE_e
FDE_s/FDE_e - Full disk encryption is Supported (equivalent to Media Encryption in Locking Feature Descriptor Enterprise
SSC 10.2.14) / Full disk encryption is Enabled on one or more band.
Locking_s/Locking_e - LBA band locking is supported - locking object exists in the locking SP of the device (equivalent to
Locking Enabled in Locking Feature Descriptor Enterprise SSC 10.2.14) / The locking object for a band has either Read-
Locked or WriteLocked attribute set (equivalent to Locked in Locking Feature Descriptor Enterprise SSC 10.2.14).
Dload_s/Dload_e - support for Admin SP Firmware download port / Firmware download port via Admin SP is locked.
Diag_s/Diag_e - Support for Admin SP vendor specific Diagnostic port / Diagnostics port via Admin SP is locked.
MB_s/MB_e - Multiple encrypting bands supported / Multiple encrypting bands enabled. This bit shall be set to 1 if more than one band exists in addition to the global band and is defined with at least one LBA.
HGST Ultrastar SSD400M (SAS) Solid State Drive Specification
291
advertisement
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Related manuals
advertisement
Table of contents
- 17 1.0 General
- 17 1.1 Introduction
- 17 1.2 Glossary
- 17 1.3 Caution
- 19 2.0 Outline of the Drive
- 21 3.0 Solid State Drive
- 21 3.1 Control Electronics
- 23 4.0 Drive Characteristics
- 23 4.1 Formatted Capacity
- 23 4.2 Data Sheet
- 24 4.3 Inquiry Information
- 24 4.3.1 Product ID
- 24 4.4 World Wide ID - Block Assignment
- 25 4.5 Performance characteristics
- 25 4.5.1 Drive ready time
- 25 4.5.2 SSD Command Overhead
- 25 4.5.3 SSD Response Time
- 26 4.5.4 Data transfer speeds (Drive can sustain performance up to these values)
- 26 4.5.5Random writes over the life of the drive
- 27 5.0 Data Integrity
- 27 5.1 Equipment Status
- 27 5.2 Error Recovery Procedure
- 29 6.0 Electrical Interface
- 29 6.1 SAS Connector
- 29 6.1.1 29 pin Serial Attached SCSI (SAS) Connector Definition
- 31 6.1.2 Voltage and Ground Signals
- 31 6.1.3 Ready LED output
- 33 7.0 Environment
- 33 7.1 Temperature and humidity
- 34 7.2 Storage requirements
- 34 7.2.1Packaging
- 34 7.2.2Storage time
- 34 7.3 Corrosion test
- 35 7.4 Cooling requirements
- 37 8.0 DC Power Requirements
- 37 8.1 Power Supply Current, Average and Peak
- 38 8.2 Ripple Voltage
- 38 8.3 Power Consumption Efficiency Index
- 39 9.0 Reliability
- 39 9.1 Data Reliability
- 39 9.2 Failure prediction (S.M.A.R.T)
- 39 9.3 MTBF (Mean Time Between Failure): 2M hours
- 39 9.4 Preventive Maintenance
- 39 9.5 Temperature Warning
- 41 10.0 Mechanical Specifications
- 41 10.1 Outline
- 41 10.2 Mechanical Dimensions
- 43 10.3 Mounting Positions and Tappings
- 44 10.4 Interface Connector
- 44 10.5 Drive Mounting
- 45 11.0 Acoustics, Vibration and Shock
- 45 11.1 Acoustics
- 45 11.2 Operating Vibration
- 45 11.2.1 Random Vibration
- 45 11.2.2 Swept Sine Vibration
- 45 11.3 Non-operating Vibrations
- 45 11.3.1 Random Vibration
- 45 11.3.2 Swept Sine Vibration
- 45 11.4 Operating shock
- 46 11.5 Non-operating shock
- 46 11.5.1 Half sinewave shock pulse
- 47 12.0 Identification
- 47 12.1 Labels
- 49 13.0 Electromagnetic Compatibility
- 49 13.1 Class B Regulatory Notices
- 51 14.0 Standards
- 51 14.1 UL and C-UL Standard Conformity
- 51 14.2 European Standards Compliance
- 51 14.3 German Safety Mark
- 51 14.4 Flammability
- 53 15.0 SAS Attachment
- 53 15.1 General
- 53 15.2 SAS Features
- 54 15.3 SAS Names and Identifiers
- 55 15.4 PHY Layer
- 55 15.4.1 Link Reset Sequence
- 56 15.4.2 Hard Reset
- 56 15.4.3 SAS OOB (Out of Band)
- 57 15.4.4 SAS Speed Negotiation
- 58 15.4.5 PHY Error Handling
- 58 15.5 Link Layer
- 58 15.5.1 Address Frames
- 61 15.5.2 Link Layer Error Handling
- 63 15.6 Transport Layer
- 64 15.6.1 Command Information Unit
- 65 15.6.2 TASK Information Units
- 67 15.6.3 XFER_RDY Information Units
- 67 15.6.4 DATA Information Units
- 67 15.6.5 RESPONSE Information Units
- 69 15.6.6 Sequences of SSP Information Units
- 70 15.6.7 Transport Layer Error Handling
- 73 16.0 SCSI Command Set
- 75 16.1 SCSI Control Byte
- 75 16.2 Abbreviations
- 75 16.3 Byte ordering conventions
- 76 16.4 FORMAT UNIT (04)
- 77 16.4.1 Parameter List Header
- 79 16.5 INQUIRY (12)
- 80 16.5.1 Inquiry Data
- 93 16.6 LOG SELECT (4C)
- 96 16.7 LOG SENSE (4D)
- 97 16.7.1 Log Page parameters
- 98 16.7.2 Log Sense Page
- 99 16.7.3 Log Sense Page
- 101 16.7.4 Log Sense Page
- 103 16.7.5 Log Sense Page
- 105 16.7.6 Log Sense Page
- 106 16.7.7 Log Sense Page D
- 107 16.7.8 Log Sense Page E
- 108 16.7.9 Log Sense Page F
- 109 16.7.10 Log Sense Page
- 112 16.7.11 Solid State Media log page (Page 11)
- 113 16.7.12 Log Sense Page
- 115 16.7.13 Log Sense Page
- 119 16.7.14 Log Sense Page 1A
- 120 16.7.15 Log Sense Page 2F
- 121 16.7.16 Log Sense Page
- 122 16.7.17 Log Sense Page
- 124 16.8 MODE SELECT (15)
- 125 16.9 MODE SELECT (55)
- 126 16.10 MODE SENSE (1A)
- 127 16.10.1 Mode Parameter List
- 131 16.10.2 Mode Page 00 (Vendor Unique Parameters)
- 133 16.10.3 Mode Page 01 (Read/Write Error Recovery Parameters)
- 134 16.10.4 Mode Page 02 (Disconnect/Reconnect Parameters)
- 135 16.10.5 Mode Page 03 (Format Device Parameters)
- 137 16.10.6 Mode Page 04 (Rigid Disk Drive Geometry Parameters)
- 138 16.10.7 Mode Page 07 (Verify Error Recovery Parameters)
- 139 16.10.8 Mode Page 08 (Caching Parameters)
- 141 16.10.9 Mode Page 0A (Control Mode Page Parameters)
- 143 16.10.10 Mode Page 0C (Notch Parameters)
- 143 16.10.11 Mode Page 18h
- 144 16.10.12 Mode Page 19h (Port Control Parameters)
- 150 16.10.13 Mode Page 1A (Power Control)
- 151 16.10.14 Mode Page 1C (Informational Exceptions Control)
- 154 16.11 MODE SENSE (5A)
- 155 16.12 PERSISTENT RESERVE IN (5E)
- 155 16.12.1 Service Action
- 156 16.12.2 Parameter data for Read Keys
- 157 16.12.3 Parameter Data for Read Reservations
- 158 16.13 PERSISTENT RESERVE OUT (5F)
- 159 16.13.1 Service Action
- 159 16.13.2 Type
- 160 16.13.3 Parameter list
- 161 16.13.4 Summary
- 163 16.14 PRE-FETCH (34)
- 164 16.15 READ (6) - (08)
- 165 16.16 READ (10) - (28)
- 167 16.17 READ (12) - (A8)
- 168 16.18 READ (16) - (88)
- 169 16.19 READ (32) - (7F/09)
- 171 16.20 READ BUFFER (3C)
- 172 16.20.1 Combined Header And Data (Mode 00000b)
- 172 16.20.2 Read Data (Mode 00010b)
- 173 16.20.3 Descriptor (Mode 00011b)
- 174 16.20.4 Read Data from Echo Buffer (Mode 01010b)
- 174 16.20.5 Echo Buffer Descriptor (Mode 01011b)
- 174 16.20.6 Expander Communications and Echo Buffer (Mode 11010b)
- 175 16.21 READ CAPACITY (10) - (25)
- 177 16.22 READ CAPACITY (16) (9E/10)
- 177 16.22.1 Returned Data Format
- 179 16.23 READ DEFECT DATA (37)
- 181 16.23.1 Defect List Header
- 181 16.23.2 Defect List Descriptor
- 181 16.23.3 Physical Sector Format (101b)
- 182 16.24 READ DEFECT DATA (B7)
- 182 16.24.1 Defect List Header
- 183 16.24.2 Defect List Descriptor
- 183 16.24.3 Physical Sector Format (101b)
- 184 16.25 READ LONG (3E)
- 185 16.26 REASSIGN BLOCKS (07)
- 187 16.27 RECEIVE DIAGNOSTICS RESULTS (1C)
- 187 16.27.1 Receive Diagnostic Results Page
- 188 16.27.2 Receive Diagnostic Results Page
- 190 16.28 RELEASE (17)
- 191 16.29 RELEASE (57)
- 192 16.30 REPORT DEVICE IDENTIFIER (A3/05)
- 194 16.31 REPORT LUNS (A0)
- 195 16.32 REPORT SUPPORTED OPERATION CODES (A3/0C)
- 196 16.32.1 All_commands parameter data format
- 197 16.32.2 One_command parameter data format
- 199 16.32.3 Command timeouts descriptor format
- 200 16.33 REPORT SUPPORTED TASK MANAGEMENT FUNCTIONS (A3/0D)
- 202 16.34 REQUEST SENSE (03)
- 203 16.35 RESERVE (16)
- 204 16.36 RESERVE (56)
- 205 16.37 REZERO UNIT (01)
- 206 16.38 SEEK (6) - (0B)
- 206 16.39 SEEK (10) - (2B)
- 207 16.40 SEND DIAGNOSTIC (1D)
- 209 16.40.1 Send Diagnostic Page
- 209 16.40.2 Send Diagnostic Page 3F
- 212 16.40.3 Send Diagnostic Page
- 214 16.41 SET DEVICE IDENTIFIER (A4/06)
- 215 16.42 START STOP UNIT (1B)
- 216 16.43 SYNCHRONIZE CACHE (10) - (35)
- 217 16.44 SYNCHRONIZE CACHE (16) - (91)
- 218 16.45 TEST UNIT READY (00)
- 219 16.46 VERIFY (2F)
- 221 16.47 VERIFY (12) - (AF)
- 222 16.48 VERIFY (16) - (8F)
- 223 16.49 VERIFY (32) - (7F/0A)
- 225 16.50 WRITE (6) - (0A)
- 226 16.51 WRITE (10) - (2A)
- 228 16.52 WRITE (12) - (AA)
- 229 16.53 WRITE (16) - (8A)
- 230 16.54 WRITE (32) - (7F/0B)
- 232 16.55 WRITE AND VERIFY (10) - (2E)
- 233 16.56 WRITE AND VERIFY (12) - (AE)
- 234 16.57 WRITE AND VERIFY (16) - (8E)
- 235 16.58 WRITE AND VERIFY (32) - (7F/0C)
- 236 16.59 WRITE BUFFER (3B)
- 236 16.59.1 Combined Header And Data (Mode 00000b)
- 237 16.59.2 Write Data (Mode 00010b)
- 237 16.59.3 Download Microcode (Mode 00100b)
- 238 16.59.4 Download Microcode and Save (Mode 00101b) -Single Binary File
- 238 16.59.5 Download Microcode and Save (Mode 00111b) - Multiple Binary Files
- 238 16.59.6 Write Data to Echo Buffer (Mode 01010b)
- 238 16.59.7 Enable Expander Communications Protocol (Mode 11010b)
- 239 16.60 WRITE LONG (3F)
- 241 16.61 WRITE SAME (41)
- 242 16.62 WRITE SAME (16) - (93)
- 243 16.63 WRITE SAME (32) - (7F/0D)
- 245 17.0 SCSI Status Byte
- 247 18.0 Additional information
- 247 18.1 SCSI Protocol
- 247 18.1.1 Priority of SCSI Status Byte Reporting
- 247 18.1.2 Invalid LUN Processing
- 248 18.1.3 Command Processing During Execution of Active I/O Process
- 249 18.1.4 Unit Attention Condition
- 251 18.1.5 Command Processing During Startup and Format Operations
- 251 18.1.6 Internal Error Condition
- 251 18.1.7 Deferred Error Condition
- 252 18.1.8 Degraded Mode
- 258 18.1.9 Command Processing while Reserved
- 258 18.2 Priority Commands
- 259 18.3 Command Queuing
- 259 18.3.1 Queue Depth
- 259 18.3.2 Queue Full Status
- 259 18.3.3 Termination of I/O Processes
- 259 18.4 Command Reordering
- 259 18.5 Concurrent I/O Process
- 259 18.6 Write Cache
- 260 18.7 Automatic Rewrite/Reallocate
- 260 18.8 Segmented Caching
- 260 18.8.1Overview
- 260 18.8.2 Read Ahead
- 260 18.9 Multiple Initiator Systems
- 260 18.9.1 Sense Data
- 260 18.9.2 Mode Pages
- 260 18.10 Multiple Initiator Environment
- 260 18.10.1 Initiator Sense Data
- 260 18.10.2 Initiator Mode Select/Mode Sense Parameters
- 261 18.11 Reset
- 261 18.11.1 Reset Sources
- 261 18.11.2 Reset Actions
- 261 18.12 Diagnostics
- 261 18.12.1 Power on Diagnostics
- 262 18.12.2 Self-test via SEND DIAGNOSTIC Command
- 265 18.13 Idle Time Function
- 265 18.14 Command Time out Limits
- 265 18.14.1 Reassignment Time
- 265 18.14.2 Format Time
- 265 18.14.3 Start/Stop Unit Time
- 266 18.14.4 Medium Access Command Time
- 266 18.14.5 Time-out Limits for Other Commands
- 267 18.15 Recommended Initiator ERP
- 267 18.15.1 Drive Service Strategy
- 268 18.15.2 Recommendations for System Error Log
- 268 18.15.3 Data Recovery Procedure
- 268 18.15.4 Nondata Error Recovery Procedure
- 275 19.0 SCSI Sense Data
- 275 19.1 SCSI Sense Data Format
- 276 19.2 Sense Data Description
- 276 19.2.1 Valid (Bit 7 of byte 0)
- 276 19.2.2 Error Code (Bit 6 - 0 of byte 0)
- 276 19.2.3 ILI: Incorrect Length Indicator (Bit 5 of byte 2)
- 277 19.2.4 Sense Key (Bit 3 - 0 of byte 2)
- 278 19.2.5 Information Bytes (Byte 3 through 6)
- 278 19.2.6 Additional Sense Length (Byte 7)
- 278 19.2.7 Command Specific Information (Byte 8 through 11)
- 279 19.2.8 Additional Sense Code/Qualifier (Byte 12 and 13)
- 291 19.2.9 RU: Field Replaceable Unit (Byte 14)
- 291 19.2.10 Sense Key Specific (Byte 15 through 17)
- 295 19.2.11 Reserved (Byte 18 through 19)
- 295 19.2.12 Vendor unique error information (Byte 20 through 23)
- 295 19.2.13 Physical Error Record (Byte 24 thru 29)
- 295 19.2.14 Reserved (Byte 30 through 31)
- 297 20.0 Appendix. UEC list
- 305 21.0 TCG SSC
- 305 21.1 Referenced Specifications and Standards
- 305 21.1.1 TCG Specifications
- 305 21.1.2 Federal Information Processing Standards (FIPS)
- 305 21.1.3 National Institute of Standards (NIST)
- 305 21.1.4 Department of Defense
- 306 21.1.5 RSA Laboratories Standards
- 306 21.1.6 Other Standards
- 306 21.2 Implementation Exceptions
- 306 21.3 Implementation Features and Details Outside of TCG Specifications
- 307 21.4 Encryption Algorithms
- 307 21.4.1 Advanced Encryption Standard (AES) Support
- 307 21.4.2 Level 0 Discovery Vendor Specific Data
- 308 21.4.3 Pseudo Random Number Generation (PRNG)
- 308 21.4.4 Key Erasure
- 308 21.5 TCG SSC Tables
- 308 21.5.1 Admin SP C_PIN Table and Locking SP C_PIN Table
- 309 21.5.2 K_AES_256 Table
- 309 21.5.3 Locking SP AccessControl Table
- 310 21.5.4 Locking Info Table
- 310 21.5.5 Locking SP Locking Table
- 310 21.6 Firmware Download and Signing
- 311 21.7 Ports
- 314 21.8 MSID
- 314 21.9 Logging
- 314 21.10 Number of Sessions
- 314 21.11 Number of Bands
- 314 21.12 Number of COMIDs
- 314 21.13 Locked and Unlocked Behavior
- 314 21.13.1 T10 SCSI commands
- 317 21.13.2 TCG SSC Commands