06-29-2019, 07:33 PM
What does all of this mean? What if I don't want encryption?
The self-encrypting drive (SED) features a AES-256 encryption engine, providing hardware-based, secure data encryption, with no loss of SSD performance. This SED follows the TCG Enterprise specification for trusted peripherals. When TCG Enterprise features are not enabled, the device can perform alternate data encryption by invoking the ATA security command set encryption features, to provide full disk encryption (FDE) managed in the host system BIOS. TCG Enterprise and ATA security feature sets cannot be enabled simultaneously.
The data encryption is always running; however, encryption keys are not managed and the data is not secure until either TCG Enterprise or ATA security feature sets are enabled.