Chapter 7 Encryption Key Management
FIPS-Certified Encryption Solution
Scalar i500 User’s Guide 203
FIPS-Certified Encryption Solution
FIPS (Federal Information Processing Standard) 140-2 is a U.S.
government standard relating to computer security and encryption.
The Quantum Scalar i500 now offers a FIPS 140-2 Level 1 certified
encryption solution composed of the Scalar Key Manager and HP LTO-5
or LTO-6 Fibre Channel tape drives in a Scalar i500 library. FIPS mode
can be enabled on the HP LTO-5 or LTO-6 tape drives via the library user
interface. Once in FIPS mode, all encryption key communication between
the tape drive and the library controller is authenticated and encrypted.
Details about configuring FIPS mode include:
• Library firmware must be at version 600G or later.
• HP LTO-5 or LTO-6 FC tape drive firmware must be at the latest
version qualified with the Scalar i500 library (see the Scalar i500
Release Notes for qualified firmware levels).
• An Encryption Key Management license must be installed on the
library sufficient to cover the tape drive(s) on which you want to
enable FIPS mode.
• A Storage Networking license must be installed on the library
sufficient to cover the tape drive(s) on which you want to enable FIPS
mode.
• FIPS mode is configured by partition. FIPS partitions must contain
only HP LTO-5 FC or HP LTO-6 FC tape drives.
• The partition encryption method must be set to Enable Library
Managed in order to set FIPS mode.
• FIPS mode is disabled by default.
• Ethernet connectivity is required for the tape drives on which you
want to enable FIPS mode. For most libraries, this requires one or
more Ethernet Expansion blades installed on the library, unless your
library consists of a single 5U control module. For 5U libraries, you
can connect your tape drives directly to the Ethernet ports on the
library control blade (LCB). See Tape Drive Ethernet Connectivity
and the Ethernet Expansion Blade on page 464.
To Next Page
Loading...
Need help?
General