Module Name
PowerMax NVMe and VMAX 12G SAS Module
Caveat
When installed, initialized and configured as specified in the Security Policy Section 3
Security Level Exceptions
- Physical Security: Level 2
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Embedded
Description
Dell EMC Data at Rest Encryption (DARE) provides hardware-based, on-array, encryption for storage systems, including VMAX and PowerMax. DARE protects against unauthorized access when drives are physically removed. Encryption (AES-XTS 256-bit) occurs in the I/O module, allowing support for all back end drive types. Dell EMC Efficient Encryption leverages the same hardware module as DARE. Host encrypted data (AES-XTS 256-bit) is decrypted using shared keys, for the sole purpose of allowing Data Reduction capabilities to be applied before data is securely stored on drive.
Hardware Versions
303-493-001C-03 [1]; and 303-305-100A-06 [2]
Firmware Versions
v3.09.34.00 [1]; and v3.08.41.00 [2]