Security. Performance. Scalability. Reliability. Safeguarding network infrastructure and storage systems is critical, now more than ever. Microsemi’s IOC/HBA and ROC/RAID solutions feature XTS-AES encryption engines for controller-based data encryption (CBE), secure boot FPGAs ensure authenticity of platform, and Flashtec NVMe Controllers include XTS-AES encryption engines and key management assist functions (AES Key Unwrap, TRNG), enabling either controller-based encryption (CBE) or self-encrypting drive (SED) solutions for data-at-rest encryption. Together, this provides data center architects with the most secure and reliable server and storage infrastructure available.   Controller-Based Data Encryption Microsemi is a proven leader in controller-based encryption with milestones dating back to 2008, when we introduced the industry’s first controller-based encryption solution for data centers. Today, Microsemi still leads the market and offers controller-based encryption on both the Smart Storage platform (maxCrypto™) for the Server market  and on the Tachyon® platform (storClad™) for the Storage Systems market.

Controller-based encryption (CBE) offers several advantages over self-encrypting drives (SEDs) including: 

Operational Benefits:

• Supports all SAS or SATA disk media (HDD, SSD), including legacy devices, and eliminates drive SKU proliferation.
• 256-bit XTS-AES encryption with FIPS 140-2 compliancy can be achieved without FIPS-compliant drives.
• CBE is OS-independent and compliance testing can be achieved on an adapter-level for multiple configuration types.
• Data at rest encryption can be enabled on only subsets of the data.
• Data can be re-keyed at any time.

Security Benefits: 

• CBE addresses known security holes by ensuring that 100% of the data on the drive can be encrypted as well as all data between the drive and controller as well as the data in the RAID controller cache.
• CBE technology enables hundreds of unique keys per drive (thousands of key per server) which enables unique keys per user or application and features like instant user delete in multi-tenancy applications.
• CBE ensures that no unencrypted keys are stored on the drive.

Performance and Scale:

• Using a controller-based approach for data encryption delivers the utmost in scalable Enterprise solutions. The ability to run at line rate protects your data center performance. Local or remote key management ensures your data-at-rest security can scale across the Data Center.

Data Center Secure Boot Solutions

While robust security measures to protect data-in-motion, data-in-use and data-at-rest are fundamental to embedded systems security, establishing a hardware root of trust is equally essential. In the data center, adding a secure boot FPGA to the control CPU provides a means to ensure authenticity of the underlying platform, manage keys securely and provide strong anti-tamper countermeasures to protect against unauthorized physical access and reverse engineering. 

Microsemi is a leader in embedded systems security and smart storage solutions, with a history of market leadership in controller based data encryption and a complete portfolio based on a unified stack. Explore our secure boot solutions for data center.

Proven Security Solutions

Microsemi offers an industry-leading portfolio, including solutions for system trust with our secure boot FGPA solutions and robust data protection and security solutions for data-in-motion, data-in-use, and data-at-rest in data center environments. Our portfolio of technologies simplify time- and path-to-market with solutions tailored to an organization’s unique security, platform, performance, and business requirements. 

Contact your local Microsemi sales office today to find the right technologies and products for your data center protection and security needs.

Security. Performance. Scalability. Reliability.

Safeguarding network infrastructure and storage systems is critical, now more than ever. Microsemi’s IOC/HBA and ROC/RAID solutions feature XTS-AES encryption engines for controller-based data encryption (CBE), secure boot FPGAs ensure authenticity of platform, and Flashtec NVMe Controllers include XTS-AES encryption engines and key management assist functions (AES Key Unwrap, TRNG), enabling either controller-based encryption (CBE) or self-encrypting drive (SED) solutions for data-at-rest encryption. Together, this provides data center architects with the most secure and reliable server and storage infrastructure available.  

Controller-Based Data Encryption

Microsemi is a proven leader in controller-based encryption with milestones dating back to 2008, when we introduced the industry’s first controller-based encryption solution for data centers.

Today, Microsemi still leads the market and offers controller-based encryption on both the Smart Storage platform (maxCrypto^™) for the Server market  and on the Tachyon^® platform (storClad^™) for the Storage Systems market.