Cigent Announces New Pre-Boot Authentication (PBA) Full Drive Encryption

FORT MYERS, Fla. - July 18, 2023 - PRLog -- Cigent® Technology, Inc., the leader in embedded cybersecurity in storage devices, today unveiled Cigent Data Defense Pre-Boot Authentication, which Enables a TCG Opal 2.0 Self Encrypting Drive to be fully encrypted, preventing adversaries from being able to access the data if they get physical access to the PC or storage device. Cigent PBA Software has been FIPS Validated (https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?validation=35911) and posted on the NIAP Common Criteria Products in Evaluation site (https://www.niap-ccevs.org/Product/PINE.cfm), the precursor to certification by NIAP (https://www.niap-ccevs.org/) and listing on the Product Compliant List (https://www.niap-ccevs.org/product/) and posting on CSfC Component List (https://www.nsa.gov/Resources/Commercial-Solutions-for-Classified-Program/Components-List/).

When installed on a Seagate Barracuda 515 or DIGISTOR C Series (https://digistor.com/citadel/c-series/) drive (both on the NIAP Product Compliant List (https://www.niap-ccevs.org/product/)), Cigent offers CSfC (https://www.nsa.gov/Resources/Commercial-Solutions-for-Classified-Program/) DAR Capabilities Package 5.0 (https://www.nsa.gov/Portals/75/documents/resources/everyone/csfc/capability-packages/(U)%20Data-at-Rest%20Capability%20Package%20v5.0.pdf?ver=7nEO2w9DWqa_7NaXBUHObQ%3D%3D) compliant Full Drive Encryption protection with FDE_EE (https://www.niap-ccevs.org/profile/Info.cfm?PPID=438&id=438) (encryption engine) and FDE_AA (https://www.niap-ccevs.org/profile/Info.cfm?PPID=437&id=437) (authentication) NIAP Protection Profiles compliance.  Cigent Data Defense PBA supports multiple forms of authentication including username and password, CAC/PIV/Yubikey, or both to be fully NIST MFA compliant (https://csrc.nist.gov/csrc/media/Presentations/2022/multi-factor-authentication-and-sp-800-63-digital/images-media/Federal_Cybersecurity_and_Privacy_Forum_15Feb2022_NIST_Update_Multi-Factor_Authentication_and_SP800-63_Digital_Identity_%20Guidelines.pdf) and adhere to both MFA and Zero Trust requirements outlined in the US Executive Order 14028 (https://www.whitehouse.gov/briefing-room/presidential-actions/2021/05/12/executive-order-on-improving-the-nations-cybersecurity/).

Furthermore, both the Seagate Barracuda 515 and DIGISTOR C Series Advanced Secure SSDs include Cigent's embedded cybersecurity protections in firmware. These protections include Complete Erasure Verification, Immutable Insider Threat data access logs, and a firmware-heartbeat that automatically locks and makes Cigent Secure Vaults invisible if the Cigent software service is disabled.

With Data Defense Pre-Boot Authentication, an authentication screen pops up when the computer is turned on. The user can then authenticate to decrypt the drive. Cigent's PBA software uses RSA 4096-bit encryption keys for authentication and can be used in conjunction with Cigent Data Defense Secure Vault to create a post-boot hidden partition for storage of sensitive data that requires MFA for access and uses Cigent advanced key creation and storage for partition protection.

The PBA software also enables the administrator to securely wipe data from drives with Cigent True Erase™. This includes a Crypto Erase that deletes the decryption key rendering the encrypted data inaccessible. For added assurances, a full drive erasure (using a Format NVM function to Full Flash Overwrite, zeroing every block on the drive, resetting the drive back to its factory state) completely overwrites the disk to remove all data.  Cigent's patented True Erase capability built into the firmware of Cigent Secure SSDs also verifies that every block has truly been wiped after erasure. Within seconds, True Erase performs all three of these functions enabling the drive to be safely repurposed or sent off for destruction.