HP EliteBook 735 Secure Erase SSDs & HDDs - Page 2

Conclusion

Get HP EliteBook 735 PDF manuals and user guides View all HP EliteBook 735 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 2 highlights

HP Secure Erase for SSDs & HDDs Block Erase and Crypto Erase Sanitize Operation is a function enabled only in PCIe NVMe SSDs. NVMe does not follow conventional ATA feature sets. Instead, NVMe devices support a sanitization function, inside their FORMAT NVM command structure that includes BLOCK ERASE SANITIZE and CRYPTO ERASE SANITIZE operation. So, by setting some specific bits in this command structure, a function similar to Secure Erase can be carried out. What data is not erased? After deploying HP Secure Erase on an SSD, all data in the user space is completely and irretrievably erased, and every block in the user space is ready to accept new host-written data, which moves the drive to its highest performance state (FOB). However, some data must be left in place, including data required for normal drive operation: SSD firmware copies that reside in the NAND, all SMART data, and retired NAND block mapping tables. Conclusion Writing or overwriting data to drive is the accepted practice of securely eliminating data from an HDD. However, in the case of NAND flash-based SSDs, overwriting is redundant, unnecessary, and a potentially insecure method of eliminating data. By using HP Secure Erase, users can ensure that SSD drives are completely sanitized and meet the minimum industry standards HP Secure Erase is easily enabled through the standard F10 BIOS setup process on most HP business PCs. Learn more hp.com/go/computersecurity © Copyright 2018, 2019 HP Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein. Intel, Pentium, Intel Inside, and the Intel Inside logo are trademarks of Intel Corporation or its subsidiaries in the U.S. and/or other countries. L61975-001, March 2019

  • 1
  • 2
HP Secure Erase for SSDs & HDDs
L61975-001, March 2019
Block Erase and Crypto Erase Sanitize Operation
is a function enabled only in PCIe NVMe SSDs. NVMe does not follow conventional ATA feature sets.
Instead, NVMe devices support a sanitization function, inside their FORMAT NVM command structure that includes BLOCK ERASE SANITIZE and
CRYPTO ERASE SANITIZE operation. So, by setting some specific bits in this command structure, a function similar to Secure Erase can be carried out.
What data is not erased?
After deploying HP Secure Erase on an SSD, all data in the user space is completely and irretrievably erased, and every block in the user space is ready
to accept new host-written data, which moves the drive to its highest performance state (FOB). However, some data must be left in place, including
data required for normal drive operation: SSD firmware copies that reside in the NAND, all SMART data, and retired NAND block mapping tables.
Conclusion
Writing or overwriting data to drive is the accepted practice of securely eliminating data from an HDD. However, in the case of NAND flash-based
SSDs, overwriting is redundant, unnecessary, and a potentially insecure method of eliminating data. By using HP Secure Erase, users can ensure that
SSD drives are completely sanitized and meet the minimum industry standards HP Secure Erase is easily enabled through the standard F10 BIOS
setup process on most HP business PCs.
Learn more
hp.com/go/computersecurity
© Copyright 2018, 2019 HP Development Company, L.P. The information contained herein is subject to change without notice.
The only warranties for HP products and services are set forth in the express warranty statements accompanying such products
and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or
editorial errors or omissions contained herein.
Intel, Pentium, Intel Inside, and the Intel Inside logo are trademarks of Intel Corporation or its subsidiaries in the U.S. and/or other countries.