The Route to True Drive Encryption Integrity (C13b)
Self-encrypting drives (SEDs) are often deployed without pre-boot authentication in federal environments, including FIPS/CSfC certified systems, creating a false sense of data security. Without proper authentication, full-drive encryption protections are bypassable and ineffective. This talk discusses real-world risks of unauthenticated SED use, best practices for pairing SEDs with robust authentication, and how CSfC-certified pre-boot authentication solutions provide rigorous third-party-tested assurance critical to true drive encryption integrity.