Micron Helps Tame the Data Security Beast

Micron achieves FIPS 140-2 validation on SAS SSDs

by: Anne Haggar

July 28, 2016

Every customer we talk with tells us that security is always on their mind.  And every survey of the IT world confirms that security is the number one challenge and the reason behind many sleepless nights for IT teams.

And while we do not have all the answers, we can tell you that there is one key piece of the security puzzle you can check off your list - security for your solid state drives.  When it comes to SSD security, there is a widely accepted standard to ensure the protection you absolutely require to safeguard the information on your SSDs. This is known as the Federal Information Processing Standard (FIPS).

The FIPS validation represents the most stringent set of security protocols defined today.  This standard and requirement is from NIST—the National Institute of Science and Technology.

Just recently, the Micron SAS 650DC Series SSD family of drives achieved theFIPS 140-2 validation.  It’s a logical step for us as we have been on the forefront of security for a number of years. Micron has a long history of building secured storage devices and we have been a contributing member of the Trusted Computing Group (TCG) since 2009.  In 2011, we launched our first TCG Opal SSD (the specification for client SSDs) which was built to the TCG standard.  We have built and supported SEDs ever since, including the M500DC and M510DC SED drives in 2015, which were the industry-first SATA SSDs to meet the TCG Enterprise specification.

Our customers want the assurance that they have purchased the drives that provide the highest standard of security.  FIPS 140-2 Level 2 validation is THE standard and ensures that our SAS SSDs meet the strict government requirements for cryptographic products.

FIPS 140-2 validated drives are well suited for a U.S. or Canadian government agency that is in the role of securing data designated as sensitive but unclassified (SBU) within computer and telecommunications systems (including voice systems). Also, any business that contracts with U.S., Canadian or even the U.K. federal organizations that require FIPS 140-2 encryption are required to be compliant with the standard.

But FIPS is not just beneficial to those in government.  We are finding that U.S. federal agencies aren’t the only organizations that are interested in the extra security these drives provide.  Companies in health care and financial services who face stiff fines for non-compliance and huge risks if they have a data breach are adding FIPS 140-2 compliance to their requirements.

Where can I find a list of products that are FIPS 140-2 validated?

NIST maintains a list of all commercially available products that have been FIPS 140-2 validated.  The Micron drives are on this list under NIST certificate #2667. 

See more from Micron bloggers on the topic of SSD security and learn more about the Micron SAS S650DC by reading the product brief. You can also request information about Micron SSD solutions or have a solution architect contact you.

Connect with Micron on Twitter @MicronStorage and on LinkedIn

Back to News