Network Computing is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Trusted Computing Standard Coming To The SAN--And The Sneakernet: Page 2 of 3

The new trusted storage spec is more flexible, allowing data to be accessed from multiple PCs. It works by putting the encryption key on the storage device itself, but only decrypting data for PCs that can prove their identity using their TPMs. For example, a USB drive could be set to carry data between a person’s home and office machines, but not function when plugged into any other PC.

The spec is also aimed at storage networks, though this will require servers with TPMs. Those are relatively rare, because the main function of the TPM so far has been to encrypt data in case of loss or theft. Around 1 in 10 laptops are ultimately stolen, while servers sit safely inside locked datacenters, so laptops were a priority.

Still, full-drive encryption does have benefits on servers, even those that aren’t connected to storage networks. The most important is that it simplifies disposal of old equipment: A PC or drive can be sold or scrapped with less fear that dumpster divers will be able to access trade secrets or customers’ private data.

“IBM is already shipping some servers with a TPM,” says Clain Anderson, director of security and wireless at Lenova. “We expect to see them become a lot more widespread.”

Critics of Trusted Computing have long warned that it is really intended for consumer DRM, so trusted storage raises obvious fears. Because it requires that a simplified TPM chip travel alongside the encrypted data, it’s unlikely to be applied to media such as CDs and DVDs. However, it or a similar TCG spec for cell phones published last year could eventually be used by music, video or e-book download services to restrict content transferred to MP3 players and other portable gadgets.