Are there any use-case for those SSDs with hardware-based encryption? Is it a good idea to use one of those over software-based encryption? (sh.itjust.works)

submitted 1 week ago* (last edited 1 week ago) by [email protected] to c/[email protected]

28 comments fedilink hide all child comments

I mean those ones with a pin entry keypad/touchscreen built onto the device and has limits on number of attempts.

you are viewing a single comment's thread
view the rest of the comments

[-] [email protected] 10 points 1 week ago* (last edited 1 week ago)

I don't trust any of those SSDs not to have backdoors, it's not even a hypothetical, we know that hardware encryption on SSDs have been broken in the past. In fact, I wouldn't even be surprised if the manufacturer is just storing all the keys they bake into the SSDs, why wouldn't they from a business perspective? At least with software encryption you can audit the code and the keys are actually generated randomly on a computer you own.

Also, if your SSD hardware fails, it could become impossible to decrypt any recovered data because the encryption keys are likely stored in the processor with no way of getting them out (and no manufacturer who is secretly storing the keys is going to blow their cover by helping you recover your data). With software encryption, you can back up your encryption keys and will be able to actually decrypt the raw data you read from the drive.

[-] [email protected] 6 points 1 week ago

What about https://certification.oshwa.org/de000007.html then? Audits like https://www.nitrokey.com/news/2015/nitrokey-storage-got-great-results-3rd-party-security-audit have been done and you could run your own.

this post was submitted on 04 Jun 2025

30 points (100.0% liked)

Privacy

38822 readers

882 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

[email protected]