Later in the year, the introduction of the 7.68 TB M.2 22110 enterprise SSD and the 30.72 TB U.3 enterprise SSD marked two more leaps forward. These groundbreaking products, designed for tactical edge and enterprise applications, exemplify our dedication to combining high capacity, durability, and robust security. The TCG Opal compliance of these drives further cements our position as a leader in secure data storage solutions, catering to a diverse range of high-stakes environments.

Refining and Enhancing Our Product Range

In 2023, DIGISTOR refined our product offerings to better meet the evolving needs of our customers. The strategic decision to focus on the Citadel™ C Series in our secure, pre-boot authentication (PBA) SSDs marked a significant shift toward more advanced, feature-rich solutions. The C Series is characterized by pre- and post-boot security features, representing our commitment to delivering leading-edge data security technology.

Even though we have streamlined our Citadel offerings to focus our resources and expertise on a product line that offers the most value to our customers, we will continue to support our existing K-series customers. Our approach demonstrates a balance between maintaining customer loyalty and embracing technological advancements, a principle that will continue to guide us into 2024 and beyond.

In the second half of 2023, we introduced the 7.68 TB M.2 22110 enterprise SSD and the 30.72 TB U.3 enterprise SSD. These first-of-its-kind, cutting-edge products, designed for tactical edge and enterprise applications, exemplify our dedication to combining high capacity, durability, and robust security to anticipate customer requirements. Furthermore, the TCG Opal compliance of these drives addresses the need to encrypt data for use in high-stakes environments.

Building a Stronger Presence

2023 was a pivotal year for DIGISTOR in terms of partner and customer engagement, with our active participation in industry events like the Flash Memory Summit, the DoD SAP IT & Cybersecurity Summit, and the DoDIIS Worldwide Conference. These events provided us with platforms to showcase our advanced products and deepen our connections within the industry. Conversations with customers and partners at these venues led to insights that have shaped our product development and market strategies.

2024 and Beyond: A Vision of Continued Excellence

As we move into 2024, we are fueled by a vision of sustained excellence and innovation. Our journey so far has been marked by achievements that reflect our commitment to leading the secure data storage industry. The upcoming year is poised to be a continuation of this trajectory, with plans to introduce more cutting-edge products and solutions to anticipate the evolving needs of our clients in an increasingly security-conscious digital world.

Our focus for 2024 and beyond is not just on technological advancement but also on strengthening customer relationships and expanding our market reach. We aim to build on the solid foundation we have established, leveraging our expertise to explore new territories and opportunities. With a proactive approach to emerging trends and challenges, DIGISTOR is dedicated to maintaining its status as a trusted leader in the industry, delivering excellence and pioneering solutions in secure data storage.

The CDSG presence at the conference featured our secure data solutions from the DIGISTOR and CRU product lines. Our DIGISTOR SSDs and CRU removable drives are synonymous with reliable and secure data storage solutions in the military and intelligence agencies here in the United States as well as in NATO countries.

The event provided an excellent platform for us to demonstrate our newest advancements and to engage with current and potential partners and customers.

Showcasing Groundbreaking Technologies and Solutions

One product that drew attention was the pioneering DIGISTOR 7.68 TB M.2 22110 enterprise SSD, which represented a leap forward in secure data storage technology. This product stood out not only for its remarkable storage capacity but also for its suitability in demanding operational environments. Its integration into compact Dell servers designed for tactical edge use highlighted the drive’s practical application in challenging conditions, such as mobile data centers or temporary command posts.

Further emphasizing our technological leadership, our presence on the NSA CSfC component list became a central topic of discussion at the conference. This prestigious listing underlines the drives’ capability to handle highly classified data securely, aligning with the most stringent security standards required by defense and intelligence agencies. This recognition is a testament to our commitment to providing solutions that meet the critical needs of our customers in the most sensitive environments.

The interest in our products was not just limited to their specifications. Conversations often veered into discussions about the evolving landscape of cybersecurity and data protection, with many attendees keen to understand how our technologies could be integrated into their existing systems. This was an opportunity for us to showcase not just our products, but also our expertise in creating comprehensive, secure data solutions tailored to the unique challenges faced by military and intelligence operations.In all, our presence at the DoDIIS Worldwide Conference underscored DIGISTOR’s role as a vanguard in the field of secure data storage solutions. Our innovations are not just about creating high-capacity, secure storage devices; they are about shaping the future of data security in an increasingly complex and threat-prone digital world.

The Intersection of Ideas and Innovations

The increased number of exhibits at this year’s conference showcased a diverse range of cutting-edge technologies and solutions. This explosion of creativity was not just a display of technical prowess but a reflection of the sector’s resilience and adaptability in the face of global challenges. Attendees were treated to a wide range of exhibitors, with each booth offering a unique insight into the future of defense technology.

In particular, the Air Force Research Lab’s booth, with its engaging robotic dog demonstration, was a standout. This exhibit was not just a crowd-pleaser but also a symbol of the innovative spirit that permeated the event. It demonstrated how technology could be used in novel ways to enhance operational efficiency and effectiveness. 

Such displays provided a fertile ground for networking, sparking conversations that could lead to future collaborations and technological advancements.

Final Thoughts and Anticipating Omaha 2024

The conference, in essence, was a vibrant marketplace of ideas, where the exchange of knowledge and experience set the stage for future breakthroughs in defense and intelligence technology.

The announcement of next year’s conference location, Omaha, has already stirred excitement. With its strategic significance, being close to the Air Force Strategic Command headquarters, Omaha promises to be a fertile ground for even more insightful discussions and opportunities. This future gathering will undoubtedly be a cornerstone event, offering a platform for the defense community to explore new technologies and strategies.

In conclusion, the DoDIIS Worldwide Conference 2023 was more than just a meeting of minds. It was a showcase of how technology can create clarity out of chaos in the realms of defense and intelligence. For DIGISTOR, it provided a valuable opportunity to showcase our leadership in secure data storage solutions, to learn from industry peers, and to prepare for the challenges and opportunities that lie ahead in this dynamic and ever-evolving sector.

The US Navy’s Challenge

The Navy’s primary objectives were clear: unlock CRU removable drives securely, seamlessly configure them with a software RAID system, execute XFS formatting procedures for enhanced performance, and employ FIPS-certified encryption to safeguard sensitive data. All of this needed to be accomplished while harnessing the full capabilities of NVMe speeds.

Moreover, the Navy sought to transfer FIPS-encrypted drives to a separate TOP SECRET environment, where automation would play a key role in unlocking, transferring data at NVMe speeds, verifying successful data transfer, securely erasing the drive, and generating a confirmation log. Remarkably, due to advanced drive erasure verification, the Navy gained approval to repurpose the same drive for deployment within a SECRET environment, repeating the entire process.

The Innovative Solution

Through collaborative efforts, DIGISTOR and Cigent developed a script utilizing existing drive technology to automate these intricate operations. This solution empowered the U.S. Navy to execute its mission with heightened security and efficiency, marking a significant advancement in operational capabilities.

The DIGISTOR Advantage

Unlike traditional methods, Cigent’s patented erase verification proved superior to simple crypto erase, aiming for NSA approval. This unique capability allowed the Navy to repurpose drives confidently, knowing that sensitive data had been securely erased.

The Automated Process

The automation script developed by DIGISTOR and Cigent streamlined the entire process on RHEL:

1. Password Prompt or USB Authentication: The script initiates by prompting for a password or using USB authentication to unlock the drive.
2. Data Transfer: A copy script efficiently transfers data to a new location.
3. Patented Drive Erasure: The Cigent patented erase, superior to simple crypto erase, wipes the drive clean, setting the stage for repurposing.
4. Drive Rebuilding: The script automates the complete rebuilding of the drive, offering the option to prompt for a new password or refer to an existing one stored on a USB.
5. Locking with FIPS/CSfC Encryption Engine: Finally, the drive is locked using the FIPS/CSfC Encryption Engine, ensuring that the repurposed drive is secure for deployment in a new classification.

Conclusion

The DIGISTOR Secure Data Drop and Sanitize (SDDS) Solution not only meets but exceeds the intricate demands of the U.S. Navy’s data management in highly classified environments. This collaborative effort showcases the power of innovative technology to enhance security, efficiency, and automation, setting a new standard for secure data handling in sensitive operational environments.

Restricting User Access with Physical Barriers: The Beginnings of Data Security

The zero-trust security model has made an enormous difference in data security over the last decade. Before the ubiquity of digital technologies and the internet, data security historically depended on physical barriers and controls.

Over time—as technology evolved and data became more digitized and networked—the reliance on physical barriers alone became insufficient. The shift from physical to digital demanded a change in strategy—leading to the development of modern cybersecurity practices that prioritize both digital protections and updated physical security measures.

In the following sections, we outline the role physical barriers played in data security before the introduction of zero-trust network access and other modern security measures.

Paper Records and Manual Databases

Before the digital revolution, most information was stored on paper. Protecting data meant physically safeguarding these documents. Filing cabinets, safes, and storage rooms were standard equipment in offices, government agencies, and institutions. Access to important files was often restricted to a few authorized personnel.

Physical Access Controls

Entry to buildings, rooms, or storage areas was controlled using locks, keys, and—in more secure environments—combination safes or vaults. Guards or security personnel might be stationed at entrances to sensitive areas to ensure only authorized individuals could enter.

Limited Portability of Data

Data in a physical form isn’t as easily copied or transmitted as digital data. To steal significant amounts of paper-based information, one would need to physically transport it—making large-scale data theft more challenging and conspicuous.

Physical Destruction

Secure disposal of paper records often involved shredding or burning to ensure they couldn’t be reconstructed or accessed by unauthorized parties.

Early Computing and Physical Barriers

In the earliest days of computing, computers were large, room-sized machines. The mainframes and servers hosting these digital records were located in dedicated rooms. Physical access to these rooms was heavily restricted. Data on these early computers was often stored using punch cards or magnetic tapes, which were also subject to physical controls.

Removable Media

As technology evolved, data could be stored on removable media like floppy disks, CDs, USB drives, and rugged removable drives. While these devices made data more portable, they also required physical possession for data access. Safeguarding the media itself became essential. Lockable storage cases and safes were commonly used to protect these removable storage devices.

Network Perimeter Security

As networked computing became prevalent, the concept of a network “perimeter” developed. While this is a digital barrier, it is analogous to a physical one. Organizations believed that by having a strong perimeter (like a fortress wall), they could keep threats outside and protect data inside. This approach has its roots in physical security concepts but has become less effective with the rise of mobile computing, cloud services, and sophisticated cyber threats.

The Decline of Over-Reliance on Physical Barriers in Data Security

While physical barriers still play a role in a comprehensive security strategy, the challenges posed by the digital age mean that they can no longer be the primary or sole line of defense for protecting data. The shift in trust away from physical barriers to data in the age of the internet and sophisticated hacking techniques can be attributed to several reasons.

Ubiquity of Digital Data, Cloud Computing, and Internet-Connected Devices

The pervasiveness of digital data, the shift to cloud computing, and the ubiquity of internet-connected devices is one such reason. With the advent of the digital age, much of the world’s data has become digitized.

The shift to cloud computing means that data is often stored in shared or multi-tenant environments. While cloud providers invest heavily in security, the very nature of cloud storage means data isn’t protected by traditional physical barriers.

The rise of the Internet of Things (IoT) means that a vast number of devices, many of which might have weak security, are connected to the internet. This provides multiple entry points for attackers. As a result, the primary threats to data have shifted from physical theft or destruction to digital breaches and cyberattacks.

Increasing Ability to Remotely Access Servers from Around the World

The ability to remotely access servers and networks is another reason. Before the widespread use of the internet, gaining access to data often required physical proximity. With the internet, hackers from anywhere in the world can potentially access sensitive data without ever setting foot inside the physical location where the data is stored.

Scale and Rapidly Evolving Sophistication of Modern Cyber Attacks

The scale of today’s breaches is yet another reason why organizations cannot rely solely on physical barriers to secure access. While physical breaches were typically limited by factors such as how much paper a thief can photograph or carry, digital breaches can result in the theft of vast amounts of data in a short time. A single vulnerability can be exploited to compromise millions of records.

Plus, cyber threats have evolved rapidly. Sophisticated hacking techniques, malware, ransomware, and phishing attacks can bypass many traditional defenses. Even the most robust physical barriers are ineffective against these types of digital threats. The pace at which technology evolves makes it even more challenging for purely physical measures to keep up. As new devices and technologies emerge, so do new vulnerabilities and threats.

Insider Threats and Impossibility of Complete Physical Isolation

Even with strong physical barriers, organizations are vulnerable to insider threats. Disgruntled employees or who otherwise seek to harm an organization can misuse their access privileges. Given the right credentials, they can often bypass both physical and digital defenses.

In today’s interconnected world, it’s impractical for organizations to completely physically isolate their data. Businesses need to interact with partners, customers, and vendors, which requires data exchange and connectivity. Plus, many employees now work remotely—bringing devices home with them.

It’s worth noting, however, that while trust in physical barriers alone has diminished, they haven’t become obsolete. Data centers, for example, still employ physical security measures—like guards, biometric access controls, and surveillance—in conjunction with digital security solutions.

The Zero Trust Security Model

Forrester Research, a prominent IT market research company, has played a foundational role in the ideation and popularization of the Zero Trust security model. The Zero Trust model was introduced by John Kindervag—a principal analyst at Forrester Research—back in 2010.[1] 

At that time, traditional network security was often perimeter-centric, focusing heavily on defending against external threats but often inadequately addressing internal threats. Kindervag recognized the limitations of this approach—especially in an era where the distinction between internal and external network traffic was becoming blurred due to cloud computing, mobile devices, and other technological shifts.

Zero Trust Principles Associated with Forrester’s Model

Forrester’s Zero Trust model is built around the principle of “Never Trust, Always Verify”. This means that organizations shouldn’t automatically trust anything—be it inside or outside its parameters. Instead, they should verify everything trying to connect to its systems before granting access. The model advocates for the elimination of the concept of a trusted internal network versus an untrusted external network.

Evolution of Forrester’s Zero Trust Model

Over time, as the Zero Trust concept gained traction, Forrester continued to refine and expand on it. The firm’s researchers have consistently pushed for a holistic approach to Zero Trust—encompassing network, data, workload, people, and devices.

They’ve also highlighted the importance of technologies such as multi-factor authentication (MFA), identity and access management (IAM), and micro-segmentation in implementing a Zero Trust architecture.

Forrester has been at the forefront of promoting the Zero Trust model through its research reports, webinars, blogs, and other platforms. The company has also provided guidelines, roadmaps, and case studies to help organizations understand and implement Zero Trust strategies.

By continuously updating and refining the model based on emerging threats and technological advances, Forrester has ensured that Zero Trust remains relevant and effective in the ever-evolving cybersecurity landscape.

Zero Trust Today—Over a Decade Later

Today, the Zero Trust model has been adopted and adapted by various organizations, cybersecurity vendors, and even governmental entities. While Forrester wasn’t the only voice talking about shifting paradigms in security, the firm undeniably played a pivotal role in shaping the conversation around Zero Trust.

Forrester Research’s role in Zero Trust has been foundational, and its continuous advocacy, research, and refinements have played a major role in how organizations approach modern cybersecurity.

Understanding Zero Trust Security in Context

A zero-trust environment operates on a foundational principle: never trust, always verify. Irrespective of where access requests originate—from within an organization’s internal network or from external sources—every attempt to access system resources is treated as potentially hostile.

In such a setting, implicit trust based on network location is eliminated. Instead, security protocols demand rigorous authentication for every user and device—coupled with the least-privilege access controls.

This ensures that entities are granted only the minimal necessary access to perform their tasks and nothing more. Continuous monitoring and adaptive responses are integral components—allowing for real-time adjustments to potential threats.

Contrastingly, traditional security models often employed a perimeter-based approach—likened to a castle-and-moat strategy. Once an entity was verified and passed the outer defenses, it was typically granted broad access within the internal network.

This approach—while effective in earlier digital epochs—has become less tenable in today’s complex cyber landscape. The demarcation between external and internal threats is no longer clear-cut.

Zero trust—by eschewing this binary division and demanding consistent verification,—offers a more robust and adaptive framework suitable for the multifaceted threats of the contemporary digital realm.

Core Concepts of Zero Trust Data Security

Identity and Access Management (IAM)

IAM centralizes the definitions of each user identity and the permissions associated with them. In a zero-trust network, IAM’s significance is underscored by its ability to precisely govern who has access to what.

Role-based access control within the private network further refines this by ensuring users can only access the information necessary for their designated roles, minimizing potential points of vulnerability. Furthermore, multi-factor authentication (MFA) amplifies data security by demanding multiple forms of verification before granting access—thereby adding an additional layer of security against potential breaches.

Network Segmentation

Network segmentation—another pivotal element—acts as a safeguard against the uncontrolled spread of threats within a network. By compartmentalizing the network into distinct segments, it drastically curtails the lateral movement of potential threats—ensuring that a breach in one segment doesn’t automatically compromise others.

This structure not only limits the reach of adversaries but also enhances data security by providing granular control over who can access specific portions of the network—thereby further reducing potential points of exposure.

Continuous Monitoring & Verification

In an environment where trust is never assumed, the importance of continuous monitoring and verification cannot be overstated. This involves incessant scrutiny of both real-time data and user behavior to spot anomalies or suspicious activities that might indicate a security compromise.

Through a combination of advanced tools and techniques—such as intrusion detection systems and behavior analytics—zero trust models maintain a persistent vigilance. This ensures that potential threats are identified and addressed at the earliest possible juncture.

Best Practices for Securing Data in a Zero Trust Environment

Securing data within a zero-trust framework demands a methodical and strategic approach. A paramount first step is the prioritization of data classification—ensuring a comprehensive understanding of data flow within the organization.

This understanding then informs access controls, which should be subjected to regular reviews and updates to remain aligned with evolving data landscapes and threats. Beyond mere technological safeguards, the human element is critical; emphasizing user training and awareness programs ensures that personnel are both informed and vigilant.

Implementing end-to-end encryption provides an additional layer of defense—ensuring data remains protected even during transit. Lastly, the dynamic nature of cyber threats necessitates a proactive stance: continuous evaluation and timely updates to security policies and tools are essential to maintain the efficacy and robustness of the zero-trust environment.

Benefits and Challenges of Implementing Zero Trust for Data Security

Benefits of Implementing a Zero Trust Model

The implementation of a zero-trust framework offers a multifaceted enhancement to data security. Foremost among its advantages is the heightened protection against insider threats. By continuously validating all users regardless of their origin, the risks posed by malicious or negligent insiders are significantly mitigated.

Furthermore, zero-trust architectures inherently support flexibility and scalability, making them well-suited to adapt to dynamic and evolving environments. From a governance standpoint, organizations can also realize improved compliance and regulatory adherence due to the rigorous verification and access controls central to the model.

Perhaps most compellingly, the adoption of zero trust principles can lead to a marked reduction in data breaches—thereby substantially diminishing potential financial losses and reputational damages that often accompany such incidents.

Challenges of Implementing a Zero Trust Model

While the merits of zero-trust data security are undeniable, its implementation is not without challenges. Organizations often grapple with the intricacies of integrating zero-trust principles into established legacy systems and infrastructures—which may not be inherently designed to support such a paradigm.

The initial setup and configuration of a zero-trust environment can be complex—necessitating a meticulous approach to ensure seamless operation. Beyond the technical facets, there’s an imperative for ongoing education and training to ensure staff understand and can effectively navigate the new security landscape.

Additionally, resistance can be anticipated from users who are deeply ingrained in older, more familiar models and may view the heightened verification processes as cumbersome or restrictive.

DIGISTOR’s Role in a Zero-Trust Framework

With our PBA-enabled, fully hardware encrypted, and CSfC-ready SSDs, it is clear where DIGISTOR stands within the spectrum of data security. Whether a rugged laptop in the field used in a military operation or a server room in a data storage center, our impermeable barrier between the device and sensitive data is a boon to any zero-trust environment.

SSDs (Solid-State Drives) and similar hardware components form the backbone of many contemporary data storage solutions, and ensuring their security is paramount in a world increasingly reliant on digital data. In the context of zero trust, every device—be it an SSD or other hardware—is treated as a potential threat vector.

This implies that simply possessing the device does not grant automatic access to the data within. Rather, strict verification protocols are enacted every time data is accessed or transferred. Device-level authentication—often coupled with user authentication—is a cornerstone of this approach.

Modern SSDs like DIGISTOR’s come equipped with hardware-based encryption capabilities. In a zero-trust framework, such features are not just beneficial but essential. By encrypting data at the hardware level—even if a device is physically stolen or tampered with—the information remains inaccessible without the appropriate decryption key. This aligns seamlessly with the zero trust principle of “never trust, always verify”—ensuring that data remains secure even in potentially compromising scenarios.

Furthermore, the zero trust model emphasizes the importance of continuous monitoring and validation. For hardware, this could translate into regularly checking the integrity of SSDs and other storage devices—ensuring firmware is updated to patch any known vulnerabilities and maintaining logs of all access requests and changes to the device.

Factors that Determine Whether Drives Are Classed as Standard, Industrial, or Enterprise

Before we delve into the specific features of standard, industrial, and enterprise drives, let’s first outline the factors determining classification. Classification depends on a drive’s ruggedness, capacity, applications, and Drive Writes Per Day (DWPD). Performance, reliability, cost, and additional features also set one class apart from another. The device into which the drive will be inserted—i.e., a personal laptop or a server—also determines whether you require a standard, industrial, or enterprise drive. These physical characteristics are often referred to as “form factors.”

Standard or Commercial Class Drives

Commercial or standard drives are consumer-grade drives designed for everyday use in home computers, laptops, and other personal devices. They offer reliable performance for general computing tasks but are less robust and reliable than industrial or enterprise drives. Standard drives do not have the same ability to handle heavy workloads typically associated with industrial applications.

How Many Drive Writes Per Day Do Standard Drives Offer?

As noted above, Drive Writes Per Day is another benchmark against which drives are measured. Drive Writes Per Day (DWPD) is a measure used to express the endurance or lifespan of a solid-state drive (SSD).

It represents the number of times you can write the entire capacity of the SSD to the drive per day over the course of the manufacturer’s warranty period. According to this article from TechTarget, the ability to write the drive’s entire capacity “becomes unreliable” after the warranty has ended. As such, we recommend checking each drive’s warranty before purchase.

DWPD is an important metric for assessing how well an SSD can handle write-intensive workloads. For example, data center environments would require that all drives are durable, have high capacities, and boast excellent security features. In those environments, one would demand either enterprise or industrial drives—not standard.

Unlike enterprise and industrial, standard drives are designed for light to moderate workloads—like everyday computing tasks and gaming. These basic operations do not necessitate a high DWPD. The DWPD for consumer SSDs usually ranges from 0.1 DWPD to 0.3 DWPD. This means that you can write between 10% and 30% of the drive’s capacity to it every day until the warranty period ends and the drive’s performance declines.

While standard drives lack the features and capacity of enterprise and industrial drives, it’s important to note that they are the most affordable of the three types.

Industrial Class Drives

Industrial drives are designed for use in rugged environments with more demanding conditions—i.e., temperature fluctuations, vibration, and shock. They often come with extended warranties and are built to withstand harsher conditions—offering higher reliability, better performance, and superior durability when compared to standard drives.

For example, most standard drives have a 0-60°C operating temperature range, which means that they function reliably within this temperature range. HDDs also have a non-operating temperature range, which is usually wider than the operating range.

A standard drive’s non-operating temperature range is typically between -40°C and 70°C. Standard drives can be stored or transported at the higher and lower bounds of this temperature range but not actively used. Of course, both operating and non-operating ranges will vary depending on the specific drive model and manufacturer.

Alternatively, industrial drives are specifically crafted to operate and be stored in extreme temperature conditions. Operating temperatures range between -40°C and 85°C while the non-operating range is even wider. To this point, DIGISTOR clients have placed our industrial SSDs in satellites that use those drives up in the demanding environmental characteristics of orbital space. Standard drives do not offer such protection from these extremes.

Other Features of Industrial Drives

Beyond temperature fluctuations, industrial drives can withstand shock and vibration. As such, other industrial applications include military aircraft and heavy equipment often found in manufacturing facilities.

Industrial drives are also built to handle more DWPDs over their lifespan, which usually means that they have longer warranties than standard drives. Of course, industrial drives are more expensive than standard drives due to their enhanced durability and reliability features.

Those who need drives that can withstand such conditions while ensuring optimal performance should request either industrial or enterprise drives. But what is enterprise storage?

Enterprise Class Drives

Last but not least, we have enterprise drives, which are engineered for use in data centers, military vehicles, and enterprise-level applications where data security, speed, and constant uptime are critical.

Users can expect a DWPD rating of 1 to 3 during an enterprise drive’s warranty. This means that users can write the entire capacity of the drive to it once every single day during that period without exceeding its expected endurance.

Enterprise drives come with advanced features like enhanced error correction, power loss protection, and optimized firmware. To this point, we often supply enterprise-class SSDs to clients with servers at the tactical edge—i.e., rugged laptops used to execute military missions in the battle zone.

Enterprise Drive Limitations

However, we must add that enterprise drives usually cannot withstand extreme temperatures in the way that industrial drives can. Some enterprise drive manufacturers do offer extended temperature ranges, so be sure to check with your supplier before purchase.

Cost can also be prohibitive, as enterprise drives offer the most advanced features. One might select an enterprise drive over an industrial drive if one prioritizes endurance, performance, and data security over reliability in extreme environments.

Final Thoughts

Your unique data storage and processing needs will determine whether a standard, enterprise, or industrial drive makes the most sense for your device. For further help determining which best suits your needs, keep an eye out for our upcoming article about choosing the right storage for your application.

What is LastPass and What Kind of Data Does it Collect?

Before we explore the extent of, response to, and ongoing impacts of this latest series of cybersecurity breaches at LastPass, let’s talk a bit about what the company does and the data it collects. LastPass is a cybersecurity company specializing in providing password management and secure login solutions. 

Its primary product is a password manager that helps individuals and businesses securely store, organize, and manage their passwords and login credentials for various online accounts and services. LastPass allows users to create and store unique, complex passwords for each account.

Users must only remember a single strong master password to access their LastPass vault. LastPass automatically fills login credentials for websites and apps so users no longer need to manually enter their usernames or passwords. 

How Does LastPass Protect Customer Data?

To protect customer accounts, LastPass supports multi-factor authentication (MFA) for an additional layer of security. This is valuable because even if a hacker gains access to your master password, they still cannot log in without the second factor.

LastPass uses a zero-knowledge model–meaning the company does not actually know customer passwords or store them on its servers. The fact that LastPass does not keep these master passwords is significant given the extent of recent breaches.  

A Sixth-Month Cyber Breach Saga: What Happened to LastPass?

Over the course of six months in 2022, hackers accessed a variety of LastPass user data and proprietary LastPass technical information. They gained access to both encrypted and unencrypted data. Recent LastPass cybersecurity breaches are a reminder to companies that hackers not only steal personally identifiable information from customers but also intellectual property and trade secrets from the business itself. 

As reporter Matt Kapko writes in this article for Cybersecurity Drive, the hacker who compromised LastPass’s cloud storage in August 2022 “stole source code, proprietary technical documentation and some of the company’s internal system secrets.” Hackers were initially able to gain access to the company’s cloud storage service by targeting the home computers of engineers associated with LastPass. 

During the second incident of 2022, hackers stole customer data from LastPass. Secondary decryption keys needed by the hackers were also taken – meaning that they had further access to LastPass user data that would otherwise be protected by multifactor authentication protocols. 

LastPass and its parent company GoTo quickly employed cybersecurity company Mandiant to investigate the source and extent of these breaches, but they were unable to stop attackers from continuing to exfiltrate data from their system. The first breach occurred in August, but customers were not notified that their data had been compromised until November 2022.

We delve deeper into the extent of these incidents and the company’s response below.

Questions You Might Have About the 2022-2023 Data Breaches at LastPass

As we note in this post on our blog, honesty is key if companies want to retain or recover consumer loyalty after a cybersecurity incident occurs. Companies who respond to breaches immediately and swiftly inform consumers about the extent of those breaches generally suffer less reputational damage than companies that try to hide these incidents.

In this section, we answer questions consumers might have about LastPass’s response to recent data breaches. Did LastPass inform consumers immediately after their customer vault data was compromised? Which measures has the company taken? Let’s get into it. 

When Did LastPass Initially Learn of the Security Breach?

LastPass says that they first learned of a security breach on August 12, 2022. It noted that the breach originated from a compromised developer account, but claimed that encrypted password vaults were not accessed.

Later that month, LastPass’s CEO announced that the breach was resolved and no further leaks would occur. Unfortunately, the threat actor was able to continue transferring and copying data from LastPass’s network to an external location that they controlled well into October of last year. In December, the company later acknowledged that the hackers did gain access to customer vault backups stored by LastPass.

In January of this year, LastPass’s parent company admitted that their systems had also been infiltrated. After investigating the breaches, LastPass and their auditors concluded that all of these incidents were part of the same coordinated attack. To this day, neither LastPass nor cybersecurity company Mandiant has determined the identities or motives of these attackers. 

When Did LastPass Notify Customers of the Breach?

While LastPass learned of the breaches in August 2022, they did not notify customers that their data had been compromised until November of that year. In December, the company admitted that hackers had accessed personally identifiable customer data – including home addresses, telephone numbers, and usernames. LastPass later released two security bulletins – one aimed at LastPass customers and another at businesses – to help educate users about the breach and steps they can take to protect themselves in the future. 

How Did LastPass Respond to the Breaches?

LastPass Hired Cybersecurity Firm Mandiant to Investigate

Shortly after the first two breaches of 2022, LastPass reached out to Mandiant – a cybersecurity company known for its expertise in cybersecurity threat intelligence, incident response, and security consulting services. The firm has helped a number of companies respond to high-profile data breaches. 

For example, Mandiant played a significant role in investigating and responding to the massive data breach at Target, which compromised credit and debit card information of approximately 40 million customers. The breach was a watershed moment in cybersecurity awareness and led to increased scrutiny of retail cybersecurity. Mandiant also assisted Anthem–one of the largest health insurance companies in the United States–after it suffered a breach that exposed the personal and healthcare information of nearly 79 million individuals. 

Following the Equifax data breach–where the personal information of approximately 147 million consumers was compromised–Mandiant was brought in to conduct a forensic investigation into the incident. The US government would later conduct its own investigation and levy significant fines against the credit reporting agency. 

LastPass Conducted a Review of Their Current Cybersecurity Policies

After a cybersecurity breach, companies typically undertake a thorough review and revision of their cybersecurity policies and practices to strengthen their security posture and mitigate future risks. LastPass is no different. The first step is a comprehensive assessment of the breach itself. 

This involves determining the nature and extent of the breach, identifying the specific vulnerabilities or weaknesses that were exploited, and understanding the tactics, techniques, and procedures (TTPs) used by the attackers. Forensic analysis is conducted to trace the breach’s origins and identify compromised systems and data. In this case, Mandiant spearheaded the investigation and analysis of LastPass’s 2022 breaches. 

Once the breach’s details are understood, the company that was attacked reviews its existing cybersecurity policies and procedures. This typically includes examining access controls, authentication mechanisms, data handling and encryption practices, incident response plans, and employee training protocols. 

Based on their findings, the company then enhances its cybersecurity policies and practices. In this letter, CEO Karim Toubba writes that the LastPass security team “incorporated changes to restrict access and privilege” after completing their assessment of existing protocols. It’s essential that companies like LastPass then educate employees on recent changes and the importance of adhering to them.

LastPass Formed a New Leadership Team and Promised Financial Investment in Cybersecurity

In addition to strengthening its security systems, LastPass also formed a new leadership team and promised ongoing financial investment in cutting-edge cybersecurity measures. This leadership team includes Terry Murphy, Abby Miller, Lora Rodstein, and other experienced professionals with extensive knowledge of this industry. 

Their role will be to improve LastPass’s internal culture while delivering greater value to consumers. As Toubba notes in the aforementioned letter, this leadership team has already “begun to scope out longer-term architectural initiatives to help drive [their] platform evolution across LastPass.” 

What Can We Learn from the LastPass Data Breaches?

In an article for Forbes, Straight Talking Cyber Co-Founder Davey Winder acknowledges LastPass’s wide-ranging improvements to its storage and access controls, but questions why it took a data breach for the company to secure its data. If companies we trust to secure our data do not do so adequately until a highly publicized breach occurs, where does that leave us? How can we better protect ourselves from identity theft, financial loss, and other consequences associated with data breaches? Here’s what consumers should take away from the LastPass data breaches.

Our Data is Vulnerable and We Must Personally Protect It

Breaches remind consumers that even well-established companies with robust security measures can be vulnerable to cyberattacks. It underscores the need for individuals to take personal responsibility for their data security and not solely rely on organizations to protect their information. 

Protecting Personally Identifiable Data Starts with Limiting Who We Let Access that Data

Consumers should be cautious about sharing personal information online and should limit the data they provide to companies whenever possible. Being selective about the information shared reduces the potential impact of a breach.

Consumers Must Monitor All of Their Accounts–Even if They Never Shared Passwords or Usernames

Breaches often involve the compromise of user credentials. Consumers should use strong, unique passwords for each account and enable multi-factor authentication wherever available to add an extra layer of security. However, excellent password hygiene is not always enough to protect our data.

Consumers should regularly monitor their financial and online accounts for any suspicious activity. Detecting and reporting unusual transactions or access attempts promptly can help mitigate damage in case of a breach.

Never Open Links You Don’t Recognize, and Educate Employees to Do the Same

Being cautious of unsolicited emails, messages, or links, and avoiding clicking on suspicious attachments or links is crucial. Cybercriminals often use such phishing strategies to trick individuals into revealing sensitive information. 

If you are a business owner, educating employees about the risks of opening unsolicited messages is absolutely essential. Be sure to update employees about emerging attack strategies regularly, too.

Data Security Requires Regular Updates and Backups

Regularly backing up important data and files can help consumers recover from data loss resulting from a breach or other incidents. Cloud storage or external backups are viable options to ensure data resilience.

Keeping devices and software up-to-date is also essential, so try not to ignore those software updates. Software updates usually involve placing security patches that address vulnerabilities companies learned about after initially releasing their product. Neglecting updates can expose devices to exploitation.

In addition, consumers and corporations should equip their devices with additional security measures like PBA (Pre-Boot Authentication). PBA prevents unauthorized users–like criminals trying to steal your data–from seeing your drive or any of its data before the device even boots up. 

Final Thoughts

By practicing excellent cyber hygiene, remaining vigilant, and reporting signs of a data breach immediately, corporations and consumers can better protect themselves from criminal attacks. To make your data security systems more resilient, reach out to an expert who can advise you on best practices and the latest solutions. 

11 Simple Steps to Choosing the Right SSD for Your Application

#1 Ensure Form Factor Compatibility with Existing Systemware

Ensuring compatibility with existing hardware and software before buying SSDs is crucial to avoid compatibility issues and ensure that the SSD will work seamlessly with your system. Consider physical fit first. If the SSD does not fit into the available storage slots or bays in your computer, it will not be usable without additional modifications or adapters.

The most common form factors for SSDs include 2.5-inch, M.2, U.2, and U.3. DIGISTOR offers a variety of SSDs in each of these form factors. For example, our highly secure Citadel SSDs with pre-boot authentication (PBA) are available in the 2.5-inch form factor and in the more compact M.2. We have enterprise-class drives available in M.2, U.2, and U.3.

Consider operating system compatibility in addition to form factor compatibility. Older operating systems do not have built-in drivers or support for newer SSDs. Compatibility issues can arise if the operating system does not recognize the SSD or its entire range of capabilities.

#2 Assess Efficiency and Power Consumption

If you are selecting storage for a portable device like a personal laptop, you must consider power consumption. An SSD that consumes less power can significantly extend the amount of time you can use your device without needing to recharge.

Longer battery life can make an enormous difference if using a device on the go. Plus, SSDs that consume less power are better for the environment as they reduce your system’s overall carbon footprint.

#3 Gauge Storage Capacity

An SSD determines how much data your device can safely store. By assessing your unique application and data requirements, you need to ensure that the SSD you choose has enough capacity to accommodate your current and future data storage requirements. 

Higher capacity not only offers more storage space for new files, it also ensures your operating system, applications, and software installations run smoothly. This includes data backups. If you rely on your SSDs to store critical information, be sure to choose drives that have the capacity for regular backups. A general rule of thumb is to have at least 20% spare capacity on any storage device. Excess capacity is often needed for temporary storage during various application operations, wear leveling of SSDs, not to mention avoiding the dreaded “out of space” error messages which could leave you with lost critical data.

#4 Consider Processing Speed and General Performance

An SSD’s processing speed—especially its read and write speeds—affects how quickly your system responds to your commands. Faster processing speeds result in quicker system boot times, application launches, file transfers, and overall system responsiveness.

With high-performance SSD, loading large applications and working with large files is smoother and far more efficient. To the latter point, the speed of your storage drive impacts how quickly your operating system performs tasks like updates, background processes, and search indexing.

#5 Evaluate Durability and Endurance Under Warranty

In our post “What’s the Difference Between Standard, Industrial, and Enterprise Storage?,” we note that DWPD is a factor in classing industrial, standard, and enterprise drives. This metric refers to the number of times you can write the entire capacity of the SSD to the drive per day while it’s under warranty. DWPD is basically a measurement of endurance. If you need a higher DWPD, opt for enterprise-class drives.

#6 Determine Which Data Security Features Are Needed

If your SSD will store sensitive information, you must prioritize data security features. Selecting drives with data security features helps protect sensitive financial data, business records, proprietary files, and so much more. There are many security measures from which to choose—including multi-factor authentication methods and full disk encryption.

For example, our Citadel drives come equipped with pre-boot authentication as a security measure. With PBA, user credentials must be authenticated before the boot drive is seen by the system. Once authenticated, the computer can begin the boot process.

Until then, the computer has no idea that the SSD exists. You can learn more about PBA in this post on our blog.

#7 Decide Whether Ruggedness is a Deal-Breaker

To which kind of system are you fitting these SSDs? Are you searching for storage solutions for a regular off-the-shelf laptop or a rugged laptop for military, law enforcement, or industrial applications? If ruggedness is a deal-breaker, consider industrial drives (or depending on the environment, perhaps enterprise-class drives).

As we note in our recent post about different drive classes, industrial-class drives can withstand extreme temperatures, shock, high altitude, and vibration both in use and in storage. Standard drives cannot operate under these conditions.

#8 Ask About Available Customizations for Each Solid State Drive

Before choosing SSDs for your application, ask the manufacturer or supplier about available customizations like encryption, future firmware updates, efficient garbage collection, thermal management, and more. At DIGISTOR, we offer specialized labeling for SSDs in addition to a wide variety of other customizations.

Of course, not all SSDs support the same level of customization. The availability of customization options can vary depending on the SSD model and manufacturer.

#9 Choose SSDs That Allow for Compliance with Government Regulations

We already addressed the need for secure data storage when selecting SSDs above, but must also underscore that some institutions are required by law to implement certain security measures. Many organizations and industries are subject to regulatory requirements and data protection laws that mandate the use of encryption and other methods to protect sensitive data.

For example, HIPAA Compliance Rules include language about a doctor or medical center’s legal duty to protect patient data from breaches. Private companies that contract with government agencies might be held to similar standards.

If handling top-secret information, your application might require a CSfC-level storage device. Choosing an NSA-listed SSD with encryption capabilities can help meet these compliance requirements.

#10 Determine Whether You Want to Replace Internal Storage or Transfer Data Between Devices

Weigh the pros and cons of an internal SSD against those of an external drive. External SSDs are used for data storage, backup, and transfer between devices like laptops, desktops, gaming consoles, and even some mobile devices.

Internal SSDs are primarily used to upgrade or replace the internal storage in laptops, desktops, workstations, and servers. They are ideal for boosting system performance and responsiveness.

#11 Make Sure to Select an Appropriate Interface

Last but not least, you must consider the interface before choosing the best SSD for your application. Three common SSD types as defined by their compatible interfaces are the SATA SSD, the PCIe SSD (also called the NVMe SSD), and the SAS SSD.

Whether SATA, SAS, or NVMe, these interfaces determine how an SSD communicates with the computer’s motherboard or storage controller. Below is a short description of each type of SSD/interface. Choose the appropriate interface based on your hardware and performance needs.

SATA SSDs

SATA drives are SSDs that use the SATA interface—which is a common standard for connecting storage devices to computers. A SATA SSD has the same form factor as a traditional hard drive. These drives are often used as drop-in replacements for HDDs in laptops and desktops.

SAS SSDs

Second, we have Serial Attached SCSI SSDs, which use the SAS interface. Compared to SATA, the SAS interface is more robust and enterprise-focused. As such, SAS SSDs are typically used in enterprise environments. They offer higher performance and reliability compared to SATA SSDs.

NVME SSDs

Third, we have Non-Volatile Memory Express SSDs. These use the NVMe protocol over the Peripheral Component Interconnect Express or PCIe interface—which is why they are also called “PCIe SSDs.”

NVMe SSDs are known for their exceptional performance, low latency, and significantly faster write speeds. These SSDs also support a variety of form factors—which makes them adaptable to multiple devices.

NVMe drives are commonly used in high-performance computing environments. For example, professional gaming systems and other data-intensive applications often opt for NVMe SSDs. Our Citadel SSDs with Pre-Boot Authentication (PBA) are compatible with both NVMe and SATA interfaces.

Final Thoughts About Choosing the Right SSDs for Your Application

Performance, security, and regulatory compliance are most important when selecting solid-state drives, hard drives, and other storage tech for your devices. However, price is also a factor—especially when processing or storing significant amounts of data across many different devices.

Many who consider SSD cost will automatically opt for standard drives as they are the least expensive. While standard or consumer SSDs do cost less than enterprise or industrial SSDs and can be implemented cheaply at scale, they do not offer the same features and may leave your infrastructure open to a variety of vulnerabilities.

Consult an expert if you are unsure which SSDs meet your application’s needs.