EasyManua.ls Logo

Fujitsu Eternus DX80 S2 - Key Management Server Linkage; Figure 5.7 Data Encryption; Table 5.4 Functions for SED Authentication Keys and Key Management Server Linkage

Fujitsu Eternus DX80 S2
97 pages
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Chapter 5 Basic Functions
5.2 Security
ETERNUS DX80 S2/DX90 S2 Disk storage system Overview
Copyright 2013 FUJITSU LIMITED P3AM-4812-11ENZ0
58
Figure 5.7 Data encryption
5.2.5 Key Management Server Linkage
Security for authentication keys that are used for authenticating encryption from Self Encrypting Drives (SEDs)
can be enhanced by managing the authentication key in the key server.
• Key life cycle management
An authentication key is created and stored in the key server. A key can be obtained by accessing the key
server from the ETERNUS DX Disk storage system when required.
A key cannot be stored in the ETERNUS DX Disk storage system. Managing an authentication key in an area
that is different from where an SED is stored makes it possible to manage the key more securely.
• Key management consolidation
When multiple ETERNUS DX Disk storage systems are used, a different authentication key for each
ETERNUS DX Disk storage system can be stored in the key server.
The key management cost can be reduced by consolidating key management.
• Key renewal
An authentication key is automatically renewed before it expires by setting a key expiration date.
Security against information leakage can be enhanced by regularly changing the authentication key.
The authentication key is automatically changed after the specified period of time. Key operation costs can
be reduced by changing the key automatically. However, the key can be changed manually if required.
Table 5.4 Functions for SED authentication keys and key management server linkage
*1: The key becomes unavailable in the key server.
123 123 123
123 123 123
??? ??? ???
??? ??? ???
ETERNUS DX Disk
storage system
Encrypted
Unencrypted
Setting and management of encryption
Server
Server
Server
???
Prevention of information
leakage
?
?
?
Function SED authentication key Key management server linkage
Key creation In the storage system Key server
Key storage In the storage system Key server
Key renewal (auto/manual) No Yes
Key compromise (*1) No Yes
Key backup No Yes

Table of Contents

Other manuals for Fujitsu Eternus DX80 S2

Preview: Cli User's Guide
Cli User's Guide756 pages
Preview: User Guide
User Guide186 pages
Preview: User's Guide & Installation Instructions
User's Guide & Installation Instructions147 pages
Preview: Hardware Installation
Hardware Installation22 pages
Preview: Instal Setup
Instal Setup20 pages
Preview: Manual&Nbsp;
Manual&Nbsp;18 pages
Preview: Configuration Guide Server Connection
Configuration Guide Server Connection13 pages
Preview: Configuration Guide
Configuration Guide15 pages

Related product manuals