User's Manual
Overview 6
Benefits
Broad encryption coverage
• Encrypts data on both the attached bulk storage and the cache memory of HP Smart Array Controllers
• Supports any hard drive or SSD in the Smart Drive portfolio for HP ProLiant Gen8 or later servers or the
Supported Storage Enclosures
High availability and scalability
• Scales with the amount of data privacy requirements
o Server counts up to 25,000
o Millions of drives
o Millions of encryption keys
• The HP ESKM supports High Availability Clustering, from 2-8 modes.
Simplified deployment and management
• HP Smart Storage Administrator configures the cryptographic features of HP Secure Encryption, and
manages the controller and other direct-attached storage devices
Helps users meet compliance regulations
• The HP ESKM has completed FIPS 140-2 Level-2 validation, certificate #1922
• HP has applied for FIPS 140-2 Level-2 validation for the HP Smart Array family of controllers
Encryption features
Most HP Secure Encryption features and security settings are available through HP Smart Storage
Administrator. Additional features for Remote Mode deployments are available through HP Enterprise Secure
Key Manager 3.1 and later and Integrated Lights Out (iLO).
Feature Description Notes
Automatic key management
Encryption keys are automatically
created, saved, and deleted by HP Smart
Array Controllers without the need for
user intervention or management when
logical drives are created or deleted.
—
Compliance
HP Secure Encryption has been designed
to meet NIST-approved standards. HP is
in the process of applying for FIPS 140-2
Level 2 validation for HP Secure
Encryption. The HP ESKM has completed
FIPS 140-2 Level-2 validation, certificate
#1922.
HP Secure Encryption helps enterprises
comply with the data privacy and
protection requirements associated with
the U.S. Health Insurance Portability and
Accountability Act (HIPAA) and the
Sarbanes-Oxley Acts.
For more information, see
"Encryption Algorithms (on page
71)."