Protect and Isolate NAS Functions with Software Full Disk Encryption and Disk Partitioning

Protect and Isolate NAS Functions with Software Full Disk Encryption and Disk Partitioning

Data security and integrity are essential in deployed systems that rely on network attached storage (NAS) devices. Vehicles deployed in hostile territory need data storage versatility and data protection. As more systems, using different protocols, connect to a NAS device, the risk of data loss and data corruption increases.

Most modern unmanned vehicles, ISR aircraft, and ground vehicles are built using an Ethernet-based network-centric architecture that facilitates communication between the onboard and connected systems and a NAS device. This allows the NAS to do more than collect data. For example, the networked architecture enables the NAS to serve files, such as mission maps and plans, or to boot files to any network client. Modern NAS devices can provide a range of functionality beyond simple storage because they support a wide range of industry-standard protocols, such as file serving, block storage, recording, and remote boot. However, systems using different protocols connecting to a NAS device increase the risk of data loss or corruption due to differences in each protocol’s handling of data transfers, error correction, or file access controls. The differences in protocol functionalities may lead to unintended data overwriting when multiple systems attempt to access or modify the same files.

NAS systems must provide robust, reliable data storage with secure encryption to prevent access to sensitive data by an adversary in the event of system loss or capture. Using disk partitioning and COTS data-at-rest (DAR) encryption provides an effective solution for reducing the risk of data loss, corruption, and accessibility if the NAS falls into the wrong hands.

Login and download the white paper to learn more.

  • Network Attached Storage Functions and Protocols
  • Isolating NAS Functions with Physical Disks
  • Disk Partitioning
  • Full Drive Encryption