Wednesday, January 27th 2021

Phison Now Offering Industry-Best Secure SSD Solutions with FIPS 140-2 Certification

Phison Electronics Corp., a global leader in NAND Flash controller integrated circuits and storage solutions, announced today that it is now shipping secure SSD solutions with FIPS 140-2 Certification. In today's world, consumer and corporate data are vulnerable to attacks by hackers, viruses and even rogue governments staging cyber-attacks. Phison has recognized these security issues and addressed these threats by implementing FIPS 140-2 security technology in SATA and PCIe product lines.

Phison provided technical support for their customizable SSD solutions during the Cryptographic Module Validation Program (CMVP) process. Companies have to pass it in order to list themselves as the validated cryptographic module vendor. Because Phison has FIPS 140-2 certified solutions, our customers can now choose to leverage existing validated Phison modules so they can reduce the time and effort spent on FIPS validation of their own.
"Many governments, and companies that do business with government agencies, have adopted the FIPS 140-2 standard as a minimum requirement for data cryptography," said Don Jeanette, Vice President of SSD Market Research at Trendfocus. "Commercial, compliance-driven, security-conscious companies worldwide in healthcare, finance, legal, education, and infrastructure also increasingly require FIPS 140-2 validation. Businesses and governments demand that they encrypt their data to help protect against loss or theft. Phison's FIPS 140-2 certification, combined with the capability for customization, provides users with industry-best security that a customer can tailor to their business needs."

A FIPS 140-2 certification guarantees that a specific technology has passed rigorous testing by an accredited lab and that the product can secure sensitive information. This certification shows that Phison can design sophisticated flash storage solutions that meet high-level cryptography standards, starting from ASIC to turnkey products.

"Protecting our customer's data is one of the most important engineering design principles at Phison. We are pleased to offer FIPS 140-2 security in Phison SSD solutions to mitigate against modern threats," said K.S. Pua, CEO of Phison.

Phison's FIPS 140-2 certification from the National Institute of Standard and Technology (NIST) can be viewed here.

Visit this page for more information about Phison's FIPS-certified products.
Add your own comment

1 Comment on Phison Now Offering Industry-Best Secure SSD Solutions with FIPS 140-2 Certification

#1
R-T-B
Some insight into what this means, because some of my drives are Seagate drives that meet this standard for records keeping at my business made me have to do homework into this:

The drives must use government approved ciphers (usually AES-256, nothing weaker, and has to be western-sourced in general). They must have their source code audited by the government. The drives controllers furthermore must have a tamper evident seal on them, presumably so you know when the ninjas got to it. This is suitable for "confidential but not secret/classified material" according to docs.

For whatever that's worth. I store/work with civilian records for a nameless local county agency on my FIPS 140-2 cert'd Seagates. I'm sure the records are very boring and no one really cares, but data laws, contract conditions, etc. I do what I'm told. The best example that comes to mind is "no one ever got sued for following HIPAA." I like not being sued.

I still like the idea of coming down and finding an all black-dressed ninja dude trying to pry off the drive security seals with a ninja laser though, and getting in a battle to the death over county records. This is the dream.
Posted on Reply