Self-Encrypting Drive (SED)

A storage drive (HDD or SSD) with a built-in hardware-based encryption engine. All data written to the drive is automatically encrypted, and all data read from it is decrypted, without any user intervention or performance impact.

Hardware Encryption

A dedicated chip on the drive itself handles encryption. This is more secure and efficient than software-based encryption, which relies on the host computer's CPU.

Authentication

The process of proving identity to access the data on an SED. This is typically done with a pre-shared key (PSK) or a password, known as an Authentication Key.

ATA Security

A command set defined by the TCG (Trusted Computing Group) Opal standard that allows software to manage the security features of SEDs, such as locking and unlocking the drive.

Instant Sanitization

A key security feature of SEDs. By cryptographically erasing and regenerating the media encryption key, the entire drive can be rendered permanently unreadable in seconds, enabling secure decommissioning or repurposing.

TCG Opal

A widely adopted industry standard that defines specifications for SEDs, ensuring interoperability between hardware from different vendors and the management software used to control them.

Tag：SED,SSD