AES-256 Keys... in case anyone was wondering.
It's not mentioned in the artical. I guess the controllers are running Haswell chipsets now.
It's nice that they've caught up with every one else though.
Hybrid and all-flash storage supplier X-IO is storing data in encrypted form to increase security. Its DaR (Data-at-Rest) encryption applies to its iglu blaze and ISE products. Encryption during replication is an existing iglu feature so its extension to data at rest is logical. X-IO claims feature has been added in a way …
okay, explain to me how you do replication with SEDs and maintain encryption end to end, which is supported by this technology according to this article.
Answer - you cannot.
This sounds more like Nimble's encryption, which eschews SEDs for the AES offload engine in the newer Intel Chipsets and actually has a key management system, and can also maintain encryption to a replication target end to end.
SEDs have other drawbacks but they do allow a vendor to check the box for "Encryption at rest" and for many, that's enough.
I'm the Director of Product Marketing for XIO, Pete Brey.
Technically, the article doesn't mention end-to-end encryption. But he does allude to that, and you are correct. Yes, we can encrypt replication over the wire and yes we encrypt on disk now with this announcement. We are leveraging SED-based encryption, not controller-based encryption,
Thanks.