Hi Thomas Actually I do have a Thinkpad with an FDE SSD from Toshiba with a similar concept as I was able to understand it. I've looked over the doc and Seagate offers 2 ways how to access the drive: Either by software driver (which is OS dependent) or use BIOS integration which is then OS-independent.
Second way is exactly how Lenovo integrated the FDE disk on my laptop: The key is generated using the BIOS and can be protected by a password, by default it seems to be just an empty key, but data is transparently encrypted on the disk. So when you change the password, Lenovo warns you about this, a new encryption key is generated. Which results in the fact that you can't access the already-present data on the disk anymore since they were encrypted with the previous key. This solution is OS agnostic but highly dependent on the hardware manufacturer and as it was already written: When the board is bricked you lose your data unless you were able to backup the key, which is not always possible. Non-FDE SSD wasn't available in the size I wanted it from Lenovo at the time I bought it. Maybe check out this: http://www.thinkwiki.org/wiki/Full_Disk_Encryption_%28FDE%29 - Mathieu -- To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/6A26EF6B7A56E04EBBE1839FF122B456773984C420@poschta2.gymnasium.koeniz
