Toshiba Copier & MFP Security Features
Perhaps you saw the now infamous 60 Minutes episode when they reported on how copiers, containing hard drives that store an image of every document every copied on it, were being sold to foreign parties unknown so they could mine that information? If you missed it, you can watch the video here.
The expose had a chilling effect on the copier and multifunction printer (MFP) industry. Shortly thereafter in 2011, Toshiba took a leadership stance on office equipment security by implementing proprietary, self-encrypting drives (SEDs) to prevent leaks of sensitive information stored on copiers and MFPs.
The World's First Self-Encrypting Drives
Toshiba SEDs are equipped with a suite of security functions that bring an unsurpassed level of data protection to copiers and MFPs. This "Wipe Technology" allows you to determine a range of security settings, including invalidation of encryption keys and data invalidation when a drive is removed from its housing or connected to an unauthorized host system. Toshiba SEDs are also referred to as Security HDD (hard disk drive).
Wipe Technology
Each Toshiba hard drive or SED features Wipe Technology to erase data on the drive when it's removed and/or installed in another device, such as another MFP or computer, and an attempt is made to illegally read it.
SED Encryption
Toshiba SEDs encrypt all data on the drive using an AES 256-bit algorithm. Advanced Encryption Standard (AES) is a cryptographic algorithm that is approved by the US federal government and recommended by the National Institute of Standards and Technology (NIST). After completion of the use of the MFP or at lease end, all data on the MFP is instantly invalidated with Wipe Technology so reading out data is completely disabled, as soon as the service engineer operates the MFP according to the customer's instructions.
How SED Encryption Works
Encryption is implemented on the SED and the encryption key is securely stored on the drive.
When the shared key for authentication (different from the key for encryption) is used to exchange authentication information at power-on of the copier/MFP, the SED authenticates the MFP. When authentication succeeds, reading and writing the drive is enabled. When authentication fails or is not performed but an attempt is made to read data out of the SED, the key stored on the drive is discarded, disabling all data on the SED and preventing it from being read. When the SED is removed from the MFP and then reinstalled in the original MFP, data is retained. However, when the SED is removed from the MFP and installed in another device, including another MFP or computer, the key is discarded to invalidate data before data is read out. Once the encryption key is discarded, the data is invalid and no longer readable even if the drive is reinstalled in the original MFP.
Is Your Copier or MFP Secure?
If you're not using a Toshiba copier or MFP, what level of security does it offer? If you don't know, contact us to determine what level of security you currently have and if there are any gaps. We can also provide a no-obligation Document Assessment.
Contact us to learn more about copier and MFP security and our Document Assessment service