Mercury Systems
ASURRE
-Stor
®
SSD
Administrative Guidance
Copyright 2020 Mercury Systems. May only be reproduced in its original form (without revision)
Rev. 1.5.1 February 2020 © 2020 Mercury Systems. All rights reserved
Mercury Systems, Inc. • (602) 437-1520 •
16
20
Changing the BEV (KEK) and BLACK key after the TOE is configured
The TOE verifies that the BLACK key that fills on each power cycle is identical to the BLACK key filled during the initial
secure configuration procedure. This is done both for authentication and to prevent TOE data corruption. In order to
change to a different BLACK key or BEV(KEK) an erase operation is required. The erase operation outlined below erases
the existing BLACK key DEK, BEV(KEK), User ATA Password and the NAND media. The operation also causes the TOE to
prepare to accept new BEV(KEK) and BLACK key values.
A summary of the steps needed to change the key values appears below.
1.
Obtain the current TOE configuration Log, and modify
the “Default Secure Erase” parameter to “Fast Clear.”
2.
Unlock the TOE by entering the correct User ATA Password by sending the
“Execute Security Command”
command.
3.
Send the
“Erase the drive”
command. The drive green LED on the LED indicator port will flash until the erase operation completes. This will
take less than 8 seconds for the Fast Clear protocol. At this point the drive has no key values, no ATA Password, and the NAND media is
clear. Drive data is forensically unrecoverable.
4.
Read the TOE configuration file and modify it to include the new BEV(KEK) value and send the configuration to the TOE
5.
Repeat for the BLACK key value.
6.
Repeat for the ATA password.
7.
Cycle TOE power, enter the ATA password, and issue the
“Get Drive Information”
command and verify that the TOE is in a CC compliant
mode.
21
Changing the User or Master ATA Password after the TOE is configured
The TOE supports changing the User ATA password after initial configuration. The host system must unlock the TOE by
entering the correct User ATA password, then once unlocked, the host system can change the User ATA password. The
host system can use ATA commands defined in the SSD Programmer’s Guide
or the host can use MDU to simplify this
process. The TOE uses the PBKDF-conditioned User ATA password to unwrap the encryption key, then conditions the
new User ATA password with PBDKF to wrap the encryption key. The TOE overwrites all old information in the
keychain with information based on the new User ATA password.
The TOE supports changing the Master ATA Password, but only when no master password exists. The host must use
ATA commands (or MDU) to disable the Master ATA password prior to specifying a new Master password.
22
Ports on the
ASURRE-S
tor
®
SSD
The
ASURRE-S
tor
®
SSD
conforms to the industry standard 2.5” 9.5mm thick hard drive form factor
(SFF-8201). Photos
in Figure 6 show views of TOE ports that may be useful during configuration. Table 6 and 7 briefly describe each port.
The TOE contains a Write Protect port, a LED Indicator port, a SATA Power Segment port and a SATA Signal Segment
port. To operate the TOE in Read-Only applications, install a write protect jumper (available from Mercury) into the
Write Protect port connector.
SATA Signal Segment Port
- Plaintext data Input/Output
- Ciphertext BLACK key fill Input
- Ciphertext output (encrypted data) for validation.
- Control input (SATA commands)
- Status Output
SATA Power Segment Port
- Control Input (P1, P2, P4, P13, P14)
- Ciphertext BLACK key Fill Input (P14)
- Status Output (P11, P15)
- Power (5V and GND)
.
.
.
.
.
Figure 6: Ports on the TOE
