Manualshelf

HP LaserJet, OfficeJet, PageWide, ScanJet - HP FutureSmart Firmware Device Hard Disk, SSD, and eMMC Security (white paper)

ManualsBrandsHP ManualsPrint & ScanC2S11A
12345678910
1 Secure Erase
NOTE: The early generation of SSD used in HP printing devices did not support ATA Secure Erase;
however,
executing the Secure Erase command will manually clear all addressable memory locations
marking all
cells as empty. (See Appendix
D: for devices which did not support ATA erase.)
HP printing devices with eMMC support Secure Erase. The eMMC used in HP printing devices does not
support ATA Secure Erase, but instead uses the equivalent Trim with Sanitize, which clears all addressable
and spared storage. This erase meets the NIST 800-88r1 definition for Purge. (See Government Erase
Standards)
The Secure Erase mode is only accessible from the pre - boot menus. Because the SSD or eMMC acts as
the system drive containing the operating system firmware, performing a Secure Erase will render the
device inoperable, and a new firmware image must be installed before the device can be used again.
This erase mode is recommended when decommissioning a device.
Figure 15: Secure Erase in device Pre - boot Menu
Accessory Hard Disk Drive Option
An accessory hard drive can be added to some devices to store all customer job data. Once the drive is
installed, it is enabled on default or by selecting the drive and clicking the Use option (See Figure 15). All
existing customer job data is then transferred to the external drive automatically. From that point forward all
job data including temporary files for print and scan jobs use the accessory drive instead of the main system
drive. The accessory drive will be listed as “Internal Disk” and SSD or eMMC will be listed as “Accessory Drive 1”.
NOTE: SSD and eMMC product memory will list as “Status: Disk Cannot be encrypted” as it does not have
onboard encryption; however, any data written to the memory is encrypted by the device firmware.
Figure 16: Accessory Drive settings in the Embedded Web Server (EWS)
The accessory HDD can be securely erased independently of the system drive. Two erase operations are
available.
If the drive is an HP Secure Disk encrypted hard drive, a cryptographic erase can be performed.
(See the Erase / Unlock section in the Secure Erase section)
1 Secure Erase
2 Erase / Unlock
3 Get Statuses