Seagate is close to releasing a “secure” hard drive for laptops. Obviously, this product is targeted at customers where laptops with sensitive data have been lost and public embarrassment quickly ensued (or at least a quick public dismissal of any risk). It’s an interesting product to be sure.

Seagate will probably have significant sales based on product hype and tech punditry alone. It’s functionality and security have not been thoroughly examined, explored, and tested yet. The Momentus 5400 FDE.2 drive still faces many penetration testing efforts, research, and public scrutiny before any label of security can be applied.

The one thing that is prominently missing from the product page is an independent security evaluation report. Apparently, this technology was designed and developed in-house at Seagate. How do we know that Seagate engineers built the drive and associated software correctly? How can we be sure that the drive meets the requirements? What were the requirements? What was the threat model used? How does the product address those threats? If any independent evaluation was conducted, we need to hear about it. If no evaluation was conducted, we’ll probably hear about it soon. The question is whether Seagate will release it or if someone else not associated with Seagate will.

Enter your email address to get Hack Report news via email:

1 Comment(s)

Comments RSS TrackBack Identifier URI

Leave a comment

Name (required)

Mail (will not be published) (required)

Website