Текст страницы
10.21.1.4 Department of Defense
DoD 5220.22-M, "National Industrial Security Program Operating Manual", 2/28/2006
https://www.esd.whs.mil/Portals/54/Documents/DD/issuances/dodm/522022M.pdf?ver=2017-04-17-134632-467
10.21.1.5 RSA Laboratories Standards
1. PKCS #1 (v1.5) and RSA algorithm with 3072 bit key size.
2. PKCS #5 v2.0 Password-Based Cryptography Standard
10.21.2
Implementation Exceptions
The following is a list that describes non-compliance with the TCG Enterprise SSC specification:
• The SSC specification requires support for 1023 bands, but the implementation supports up to 15 bands.
• The K_AES_256 table was implemented with only the UID and MODE columns.
• Only one active session is permitted at a time. If a new session is requested when a session is already active,
the drive answers the host with SP_BUSY, instead of NO_SESSIONS_AVAILABLE
10.21.3 Implementation Features and Details Outside of TCG Specifications
The following features are outside of the TCG specifications.
1. Ports
2. Firmware signing
The following implementation details are outside of the TCG Enterprise SSC specification.
a. The SSC Specification states “The TPer SHALL implement the ParamCheck Longitudinal Redundancy Check
(LRC) for Get and Set method calls on a PIN value". If the LRC check is erroneously applied to a value other
than a PIN we ignore it, therefore no error is generated.
b. When handling a "TCG command followed by a Read/Write command", all reads and writes that follow a TCG
command will be processed in the normal way. No special handling or error messages will be sent to the host.
It is up to the host to understand the possible outcomes of TCG commands and read/write command ordering
and plan accordingly.
c. The TPer replies with SP_BUSY for requests beyond 1 session.
d. TCG Life Cycle Model by Activate Method and Revert Method is implemented per Opal SSC specification.
109
Hard Disk Drive Specification