Breaking News
Design How-To

Adding encryption to disk drives is made easy using an IP core

NO RATINGS
More Related Links
View Comments: Newest First | Oldest First | Threaded View
paul.dillien
User Rank
Blogger
re: Adding encryption to disk drives is made easy using an IP core
paul.dillien   3/15/2011 6:45:02 PM
NO RATINGS
Hi Dr DSP. A user could organise his system to periodically decrypt data from the disk (using the original key) and then immediately encrypt and store it using a new key. It is not mentioned in the standard, but does not conflict with it. Most users concerned about the level of security would adopt AES-256 (with a 512-bit key as explained in the article) rather than the more commonly used AES-128.

DrFPGA
User Rank
Blogger
re: Adding encryption to disk drives is made easy using an IP core
DrFPGA   3/12/2011 2:04:58 AM
NO RATINGS
Are there any dynamic techniques to encrypt data where the data is changed over time (re-encrypted periodically)? Would this improve security against attacks because the attacker could never access the entire data set from a remote location. I can't say I have seen any examples like this. Any comments?

Max The Magnificent
User Rank
Blogger
re: Adding encryption to disk drives is made easy using an IP core
Max The Magnificent   3/4/2011 6:53:05 PM
NO RATINGS
Hi Paul -- by "address above" I'm assuming that you mean your email address in the article -- cheers -- Max

paul.dillien
User Rank
Blogger
re: Adding encryption to disk drives is made easy using an IP core
paul.dillien   3/4/2011 6:44:30 PM
NO RATINGS
Hi Luke An interesting question on a complex subject. Differential Power Analysis is where the attacker has physical possession of the equipment and can subject it to laboratory analysis. Hardware is typically more secure against DPA than software, but the basic physics are in favor of a DPA attacker. Any computation will use energy and there will always be some degree of data dependence in the energy usage. Algotronix is well aware of DPA mitigation. The main strategy to deal with DPA attacks is to increase the amount of “power data” that needs to be collected by reducing the ratio of the side-channel signal compared to the noise on the power supply. Another defense is to limit the number of encryptions for any given key so that it is infeasible to collect enough power trace information before the key is changed. I would be pleased to have a detailed discussion offline, because the answers are long and sensitive. You are welcome to email me on the address above. Paul.

LukeTeyssier
User Rank
Rookie
re: Adding encryption to disk drives is made easy using an IP core
LukeTeyssier   3/3/2011 10:43:04 PM
NO RATINGS
Does anyone know if the Algotronix core is protected against side channel attacks, like Differential Power Analysis?

Max The Magnificent
User Rank
Blogger
re: Adding encryption to disk drives is made easy using an IP core
Max The Magnificent   3/2/2011 8:07:05 PM
NO RATINGS
Ever since I almost lost my data a couple of weeks ago, I've become very interested in anything to do with protecting it -- thanks for this Paul -- Max

Most Recent Comments
Radio
NEXT UPCOMING BROADCAST
EE Times Senior Technical Editor Martin Rowe will interview EMC engineer Kenneth Wyatt.
Top Comments of the Week
Like Us on Facebook

Datasheets.com Parts Search

185 million searchable parts
(please enter a part number or hit search to begin)
EE Times on Twitter
EE Times Twitter Feed
Flash Poll