Self-encryption deception: a high-level view


After analysing a significant number of hardware models, through the reverse engineering of firmware, it appears that a selection of hardware-based encryption products are flawed.

The security and vulnerability of hardware-based disk encryption of solid-state drives (SSDs) has been increasingly probed recently, as the frequency of data breaches and attacks continues to rise. One school of thought asserts that theoretically this form of encryption is similar to, or superior than, software-based encryption implementations.

Directly challenging this view, recent research carried out at Radboud University in the Netherlands by Carlo Meijer and Bernard van Gastel, has revealed a more worrying reality. Both highlight what they claim to be structural as opposed to incidental issues with a range of disk encryption products, referencing problems with the market in general, as opposed to specific vendors.

Read more…