• If you set up hardware encryption, be sure to change the master password and set the security level to maximum. Also look up if the manufacturer of your SSD is known to sell drives with broken encryption or shitty implementations of useful encryption.

    There’s a good reason Microsoft stopped trusting hardware encryption in Bitlocker.

    • flying_monkies@kbin.social
      link
      fedilink
      arrow-up
      4
      ·
      edit-2
      1 year ago

      If you set up hardware encryption, be sure to change the master password and set the security level to maximum.

      Be aware, this password is different than the Physical Secure ID (PSID) printed on the front of the disk. PSIDs are used when the release to reset command doesn’t work, typically due to key issues, and the drive gets “locked”.

      You use the PSID to run a revert to factory defaults command, unlocking the drive. Since this triggers the drive to release its’ key, the drive is considered “cryptographically erased” when you do this.

      If you revert the drive, data on it is unrecoverable.

      If you’re going to revert a drive, I suggest using a QR Code reader to get the PSID off the drive. Some venders are sadists with the font they choose making it so much fun to figure out if it’s a 1, l i I I O or 0…