【求助】跪求关于惠普DriveLock的问题

wilsonlim

哪位大侠知道惠普CMOS里面的DriveLock是如何实现的吗？？采用的是什么方式的加密，通过什么加密算法对密码进行加密。小弟跪求～～～～～

zhanggr

正道乎? 邪道乎?

MUDboy

等待技术贴

wilsonlim

我们公司笔记本要用这个技术，需要知道这些具体的实现原理，是几位数的密码，愁啊～～～～难道没人知道吗？

[ Edited by  wilsonlim on 2011-6-7 14:39 ]

zhanggr

http://en.wikipedia.org/wiki/AT_Attachment

HDD passwords and securityThe disk lock is a built-in security feature in the disk. It is part of the ATA specification, and thus not specific to any brand or device. The disk lock can be enabled and disabled by sending special ATA commands to the drive. If a disk is locked, it will refuse all access until it is unlocked.

A disk always has two passwords: A User password and a Master password. Most disks support a Master Password Revision Code.

Reportedly some disks can report if the Master password has been changed, or if it still the factory default. The revision code is word 92 in the IDENTIFY response. Reportedly on some disks a value of 0xFFFE means the Master password is unchanged. The standard does not distinguish this value.

A disk can be locked in two modes: High security mode or Maximum security mode. Bit 8 in word 128 of the IDENTIFY response shows which mode the disk is in: 0 = High, 1 = Maximum.

In High security mode, the disk can be unlocked with either the User or Master password, using the "SECURITY UNLOCK DEVICE" ATA command. There is an attempt limit, normally set to 5, after which the disk must be power cycled or hard-reset before unlocking can be attempted again. Also in High security mode the SECURITY ERASE UNIT command can be used with either the User or Master password.

In Maximum security mode, the disk cannot be unlocked without the User password — the only way to get the disk back to a usable state is to issue the SECURITY ERASE PREPARE command, immediately followed by SECURITY ERASE UNIT. In Maximum security mode the SECURITY ERASE UNIT command requires the User password and will completely erase all data on the disk. The operation is slow, it may take longer than half an hour or more, depending on the size of the disk. (Word 89 in the IDENTIFY response indicates how long the operation will take.) [22]

While the ATA disk lock is intended to be impossible to defeat without a valid password, there are workarounds to unlock a drive.

Many data recovery companies offer unlocking services,[23] so while the disk lock will deter a casual attacker, it is not secure against a qualified adversary.

注: 硬盘硬件密码是32字节数据(256位).

wilsonlim

谢谢大侠的及时回复，能否告知，哪里有写硬盘硬件密码是32字节数据(256位).你贴的文章里面好像没有写到，谢谢谢谢

zhanggr

[转发][ATA and ATAPI] AT Attachment Interface
http://www.biosren.com/viewthread.php?tid=50

ATA
AT Attachment Interface for Disk Drives (ATA-1)
AT Attachment Interface with Extensions (ATA-2)
AT Attachment - 3 Interface (ATA-3)
AT Attachment - 4 with Packet Interface Extension (ATA/ATAPI - 4)
AT Attachment - 5 with Packet Interface Extension (ATA/ATAPI - 5)
AT Attachment - 6 with Packet Interface Extension (ATA/ATAPI - 6)
AT Attachment - 7 with Packet Interface Extension (ATA/ATAPI - 7)
AT Attachment - 7 with Packet Interface Extension (ATA/ATAPI - 7) V2
AT Attachment - 7 with Packet Interface Extension (ATA/ATAPI - 7) V3

ATA/ATAPI-8 Serial Transport Rev 0a
ATA/ATAPI-8 ATACommand Set Rev 1b
ATA/ATAPI-8 ATACommand Set Rev 1c

Enhanced BIOS Services for Disk Drives Revision 7
BIOS Enhanced Disk Drive Services   (EDD)
BIOS Enhanced Disk Drive Services-2 (EDD)
BIOS Enhanced Disk Drive Services-3 (EDD-3)
Smart Command Transfer (SCT) Technical Report Rev 3d
Smart Command Transfer (SCT) Technical Report Rev 4a
Smart Command Transfer (SCT) Technical Report Rev 5

SATA
Serial ATA 1.0a specification
Serial ATA errata 41

其中: http://147.145.44.154/ftp/t13/project/d1321r3-ATA-ATAPI-5.pdf

wilsonlim

谢谢大侠，万分感谢，我下载下来仔细看看

xv6950 - 江湖飘

内行看门道，外行看热闹。