Solidigm

I think a few additional words are needed. If someone is reading this topic (at least I hope there are a few of us) he will be able to get an idea what is all about and why we are asking all over again about such "irrelevant" things like ATA and AES keys linking.

The manufacturers are to blame. When Security Extensions to ATA specification was born the manufacturers (like Seagate, Western Digital, Hitachi etc) started a very strange thing. They started to implement unofficial undocumented ways to talk to his drives - so called Vendor Specific Commands which allow to run disk diagnostics and other firmware and S.M.A.R.T related tasks even if ATA passwords was being set so even when device is locked! Why? I don't know but If you ever wondered what actually all those ATA Password Recovery firms want your 50 bucks for, this is it. The hackers quickly started to explore the possibilities and here you have it: you can recover ATA pass from the most of todays drives, you can dump service blocks, inject your modified firmware, you can even dump the locked drive sector by sector from top to bottom. This a pathetic disaster security wise!

I'm fresh to this things but it is beyond me why the manufacturers did not implement some public kill switch passwords which when executed resets ATA security systems and at same time triggers unavoidable Secure Erasing all data on the drive? No more is required! Data still safe and you-manufacturers have your unlocked / servicable drive again, and no more whining that the drive is locked so we cannot service it for you.

Instead they started to build bridges above their own security systems and explaining that they are for service porposes. Don't get it. Locked means locked, doesn't it?

And here is the thing: Even if intel implemented ATA password system in a traditional way (full of holes and service backdoors), even if it is fundamentally flawed there is still hope that the whole thing is secure.

When ATA password is cryptographically linked to AES keys and when it's presented only in a hashed form internally for authorisation purposes, then even if hackers reverse-engineer the controller down to VHDL level and run it in virtual machine 1000 times faster, even if they dump all the registers, they still do not get the final AES key so cannot decrypt the drive.

But if these two conditions are not met (protecting ATA pass with certified hash alghoritm and binding it with AES)... I'm giving you, intel 3 months until this system is defeated. Knowing how leaky the ATA password system is.

I am also watching for the response to the questions. Everything I have read thus far has providied conflicting information as to the actual security provided by the FDE encryption found in these drives.

It basically comes down to this.

Either

The ATA password (master or user) is cryptographicaly linked to the AES encryption key

or

The ATA password is stored as a non-reversible hashed value in the SSD for authentication purposes

or

The ATA password is the same as previous platter drives, and is trivial to bypass

I'm looking for a drive, capable of true user-unique FDE, that is non-trivial to bypass. I see in the intel specs reference to "user-unique" encryption available if the ATA password is set, however I do not find confirmation of this anywhere.

I do not want a drive that pretends to implement AES encryption, or implements AES encryption, but leaves the keys hanging from the lock.

I need answers to these questions before I make a purchase decision.

Patiently waiting for a response to this too.

Also, I wish to know if the situation is the same on Intel 510 series...