TCG Opal Yoshiju Watanabe Firmware Common Engineering Group Firmware Development Department November 4, 2010
I. Opal SSC 1. Opal SSC 2. Opal Storage 3. Opal Storage 4. 5. MBR Shadowing 6. SP 7. 8. II. TCG Opal SSC HDD 9. Opal SSC HDD *1. TCG: Trusted Computing Group *2. TCG Trusted Computing Group *3. Opal SSC: Opal Security Subsystem Class 2
LBA Ranges ( 4) MBR Shadowing Data Store Table: 1KB 3
Trusted Storage(TPer) Ranges Secure Storage Area Rang 1 Rang 2 Rang 3 Rang 4 Access Control Table Opal Security Provider(SP) Admin SP Locking SP Key Encryption/ Decryption AES 128 or AES 256 Data Method (Authority ) UID Name Operation Credential 010001 Admin1 Password C_PIN_Admin1 030001 User1 Password C_PIN_User1 030002 User2 Password C_PIN_User2 MBR Shadowing MBR Password Authentication I/F (Packetization) Host Opal Command IF-SEND IF-RECV Session MBR: Master Boot Record 4
Pre-Boot Trusted Storage(TPer) Opal Secure Storage Area Rang 1 Rang 2 Rang 3 Rang 4 Access Control Security Provider(SP) Admin SP Locking SP Method Table (Authority ) UID Name Operation Credential 010001 Admin1 Password C_PIN_Admin1 030001 User1 Password C_PIN_User1 030002 User2 Password C_PIN_User2 MBR Shadowing Password Key Encryption/ Decryption AES 128 or AES 256 Data I/F (Packetization) Host Opal (ISV) Command IF-SEND IF-RECV Session 5
Read Write Key 1 2 3 4 Global 1 2 3 4 Write (Un)lock Write (Un)lock Write (Un)lock Write (Un)lock Write (Un)lock Write R/W (Un)lock Write (Un)lock Read 6
MBR Table Write HDD MBR Table PBA TCG Method Data Write Host PBA Application Program After Power On Reset LBA Map 0 PBA User LBAs Normal Read Pre-Boot Authentication Pre-Boot Authentication After Pre-Boot Authentication LBA Map 0 User LBAs Normal Read OS Boot PBA : Pre-boot authentication 7
Life Cycle State Diagram for Manufactured SPs Manufactured- Disabled- Frozen Activate Manufactured- Inactive Legend Mandatory Optional Not Required AdminSP Manufactured- Disabled Manufactured Revert or RevertSP Manufactured- Frozen Manufactured- Failed LockingSP 8
ATA Command Operation Codes Trusted Receive : 5Ch, 5Dh Trusted Send: 5Eh, 5Fh SCSI Command Operation Codes SECURITY PROTOCOL IN: A2h SECURITY PROTOCOL OUT: B5h IF-RECV/IF-SEND Command Block IF-RECV/IF-SEND Data Block (Payload) TPer (HDD) Command Code Security Protocol Transfer Length ComID TCG SWG Protocol (Packetized Method) HOST Payload Example (Set Method Call Encoding Stream) 9
8. Locking SP Activation Trusted Storage Device 1.Opening a Session to the AdminSP Opening a Session to the AdminSP StartSession Payload: SMUID.StartSession(HSN, AdminSP_UID, TRUE, HostSigningAuthority=SID_UID, HostChallenge= ******* ) Host Host calls StartSession method HDD calls SyncSession method Session HSN:TSN is now open 2.Activate Locking HDD activates locking LockingSP is now Activation SyncSession Payload: SMUID.SyncSession(HSN, TSN) Activate Method Payload: LockingSP_UID.Activate() Status Payload: Status(HSN, TSN) Session Open Host calls Activate method Activation done 3.Close Session HSN:TSN) HDD calls CloseSession method Session HSN:TSN is now close CloseSession Payload: EOS CloseSession Payload: SMUID.CloseSession(HSN, TSN) Host calls CloseSession method Session Close 10
Rd Wr Er 11
12
13