HPE 3PAR StoreServ Data at Rest Encryption protects data from security breaches. If your application or environment requires data protection from loss of a drive or unauthorized exposure of the data on a drive, then consider this solution. This solution is configured with self-encrypting drives (SEDs) and a secure encryption key. A single array-based Local Key Manager (LKM) authenticates access to the data being read or written to the drives, with no performance impact. An optional External Key Manager (EKM) provides a complete security solution for unifying and automating an organization's encryption controls by securely creating, protecting, serving, controlling, and auditing the encryption keys, both locally and remotely. All HPE 3PAR StoreServ models are available with self-encrypting drives where data is encrypted as it is written to the drive. All data contained on these drives is protected against unauthorized access, including media or hardware theft, tampering, and more.1
- FIPS 140-2 Level 2 validated DAR Encryption for new HPE 3PAR StoreServ 20000 Storage and new HPE 3PAR StoreServ 8000 Storage
- Compatible with the HPE Enterprise Secure Key Manager 4.0
- Complies with the OASIS KMIP standard
Secure Sensitive Personal Information According to Regulatory Mandates
Encrypt electronic medical records for HIPPA compliance to provide patient confidentiality from unauthorized or inadvertent disclosure.
Comply with payment card industry regulations that define requirements for protection of card holder data.
Protect intellectual property or other sensitive business data by encrypting data.
Encrypt Data Easily and with no Performance Impact
All data on the HPE 3PAR StoreServ System is encrypted as it is written to the drives. In the event of a drive failure, the data is protected from unauthorized access.
The encryption process happens inside the drive architecture without any user intervention.
Local key manager included with HPE 3PAR StoreServ unlocks all drives in the array for reads and writes. Each encrypted array uses only one authentication key.
Mitigate Internal and External Risk with Data-At-Rest Encryption
HPE 3PAR StoreServ system provides proper key management that is critical to maintain separation of duties and protection against improperly cared for disks, or malicious intent from remote office employees.
Encryption protects against disk drive theft and un-scrubbed disk drives that are repurposed.
Secure your data with Self Encrypting Drives (SED)
450 GB and 900 GB 10K and 2 TB and 4 TB 7.2K Self Encrypting Drive for HPE 3PAR StoreServ 7000 and 10000; FIPS 140-2 validated.
400 GB MLC SSD SED for HPE 3PAR StoreServ 7000, 7450 and 10000.
1TB 7.2K SFF SED for HPE 3PAR StoreServ 7000.
All SEDs are certified by the U.S. National Institute of Standards and Technology (NIST) and Canadian Communications Security Establishment (CSE) as meeting Level 2 security requirements for cryptographic modules as defined in the Federal Information Processing Standards (FIPS) 140-2 Publication.
- 1. With the use of such drives, it is impossible to change the encryption functionality in a simple way, nor do you need further significant support from the supplier, which allows you to import 3Par systems without obtaining import license from the Ministry of Industry and Trade.