You can modify the Windows operating system to use a FIPS Mode Operation by opening the MMC console and changing the local security policy. This will enable either a FIPS 140-1 or 140-2 validation mode depend on the OS (Vista or something older).
Duane -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Hubbert Smith Sent: Wednesday, April 30, 2008 11:21 PM To: [email protected] Subject: Re: [FDE] Fujistu announces 2,5 inch SATA HDD with FDE Hi all, great thread, by the way. Pls keep it coming. I'm not an expert, but I have read the spec. FIPS does define "cryptography modules". FIPS does not require encrypted drives http://en.wikipedia.org/wiki/FIPS_140 http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf so, I did not read anything that says that the "cryptography module" _must_ be a disk drive and I did not read anything that says the cryptography module _cannot_ be a laptop. I guess what I'm attempting to sort out ... it appears FIPS compliance for laptops can be attained with O/S level encryption, today. (am I wrong?) so are we attempting to solve a problem of FIPS compliance for _all_ laptops or are we attempting to improve performance for _some_ FIPS compliant laptops? cheers Hubbert ----- Original Message ---- From: Scott S <[EMAIL PROTECTED]> To: [email protected] Sent: Wednesday, April 30, 2008 6:52:51 PM Subject: Re: [FDE] Fujistu announces 2,5 inch SATA HDD with FDE This might be possible for desktop computers where space is not a constraint. However, in laptops (which are the computers that are most vulnerable to theft and lost) where form factors are so specific and compact, it would be problemmatic, especially to make it generic enough to fit all brands. There is also the manufacturing aspect of it. Integration of components brings down the overall cost of production. Once components are separated out, it will be another product line with its own margins and price points. Scott On Tue, 29 Apr 2008, Simson Garfinkel wrote: > Would it not be possible to certify an encryption module that fits > between the hard drive and the host computer? This would allow you to > use off-the-shelf drives while maintaining certification... > > > On Apr 29, 2008, at 8:40 PM, Ali, Saqib wrote: > >> This is precisly the issue with obtaining FIPS certification for hard >> drives. >> >> Hard Drive design and development moves at a extremely rapid pace. >> Time to market and innovation is key in the disk drive business. >> Manufacturers like Hitachi, Fujitsu and Seagate have to release newer >> hardware every month to keep ahead of the competition. Whereas >> obtaining FIPs certification is a slow and time consuming process. By >> the time these manufacturers obtain FIPS for a certain hardware, that >> hardware is already few generations old. >> > _______________________________________________ > FDE mailing list > [email protected] > http://www.xml-dev.com/mailman/listinfo/fde > _______________________________________________ FDE mailing list [email protected] http://www.xml-dev.com/mailman/listinfo/fde ________________________________________________________________________ ____________ Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ _______________________________________________ FDE mailing list [email protected] http://www.xml-dev.com/mailman/listinfo/fde _______________________________________________ FDE mailing list [email protected] http://www.xml-dev.com/mailman/listinfo/fde
