OpenText Tableau Forensic TX1 Imager
The Information Company 149
4.9.1.1 Opal encryption
Opal encryption is a unique, hardware-based encryption method that is managed by the
controller on the drive with only minimal host system interaction. Opal is an industry
standard created by the Trusted Computing Group (TCG) consortium that defines,
among other things, the interface protocol to these types of hardware encrypted drives.
These are commonly referred to as self-encrypting drives (SEDs) as the host system
does little more than provide a front-end interface to enable the encryption and unlock a
previously encrypted drive. The control system on the drive is responsible for
encrypting/decrypting all stored data on the drive and controlling access to it.
TX1 can detect encrypted Opal SEDs and warn of the presence of Opal encryption in
various places in the user interface and forensic logs. Some Opal SEDs can also be
unlocked via the TX1 Opal Unlock Media Utility. Once unlocked, an Opal SED can be
read from (or written to, in the case of a destination drive). A detected locked Opal drive
appears like this:
Copyright © 2022 Open Text. All rights reserved. Trademarks owned by Open Text.
To Next Page
Loading...