Dzień dobry.
Planuje kupić dysk WD my book duo WDBLWE0120JCH-EESN i używać go w trybie RAID1, żeby zapewnić sobie 100% bezpieczeństwo danych. Tymczasem przeczytałem w opiniach na AMAZON , że ten dysk wcale nie zapewnia bezpieczeństwa , gdyż dyski są zaszyfrowane (nie można tego wyłączyć) pobierają klucz z chipa w obudowie do deszyfracji. W przypadku awarii obudowy jak się wyciągnie któryś z dysków i podepnie do komputera to nic się nie odczyta , bo dane są zaszyfrowane. Uszkodzenie elektroniki w obudowie oznacza utratę wszystkich danych , nawet gdy obydwa dyski są sprawne. Proszę o informację, czy to się zgadza i jak zrobić czy co kupić żeby mieć RAID1 a nie jakieś badziewie.
pozdr.
Poniżej oryginał z opinii na AMAZON.
I bought this intending to use it in RAID 1 mode to get extra protection against a disk failure. It should be obvious to Western Digital that the provision of RAID 1 would mean that it would be bought by users wanting to make loss of data due to failure of a single disk less likely. (And yes, I know RAID 1 doesn't guarantee safety and that a further backup is advisable. That's not the point - the point is that anyone buying it to use in RAID 1 mode would clearly be expecting significantly more safety than would be provided by a standard external hard drive from some other manufacture without RAID 1. However, due to action taken by Western Digital, this is not the case, and it would be impossible for Western Digital not to know this.
The drives are hardware encrypted. You cannot turn this encryption off. There is a password option, but even if you do not use this, the drives are still always encrypted. The electronics that do the encryption are built into the enclosure. The encryption/decryption key is built into a chip in the enclosure. The user has no access to this key.
Suppose the enclosure fails, and you cannot get it repaired easily. You may think that you can simply remove one of the drives and put it (for example) in a docking bay. However, the information on the drive is unreadable without the decryption key - the decryption key that is built into the enclosure: the drives are not readable outside the enclosure. It does not matter that the drives themselves may be fine: without the enclosure they are useless.
And that means that the "protection" provided by RAID 1 is useless: the redundancy of two drives is worthless, or at least has much less value is a failure of a single microchip can render the drives unreadable.
And in case you are wondering: Western Digital will NOT help you decrypt the drive if this happens. They will not provide you with the decryption key. They do not provide any software to extract the key from the drive while it is working. They will not do any recovery for you under warranty: if your unit fails, and you send it back, their stated policy is to wipe the drives. All they will do is refer you to one of their "partners" - data recovery companies who might be able to recover the data - possible using some information Western Digital has given them - for what will probably be a large fee. So, a failure of the enclosure is likely to be expensive - if you even get your data back.
Planuje kupić dysk WD my book duo WDBLWE0120JCH-EESN i używać go w trybie RAID1, żeby zapewnić sobie 100% bezpieczeństwo danych. Tymczasem przeczytałem w opiniach na AMAZON , że ten dysk wcale nie zapewnia bezpieczeństwa , gdyż dyski są zaszyfrowane (nie można tego wyłączyć) pobierają klucz z chipa w obudowie do deszyfracji. W przypadku awarii obudowy jak się wyciągnie któryś z dysków i podepnie do komputera to nic się nie odczyta , bo dane są zaszyfrowane. Uszkodzenie elektroniki w obudowie oznacza utratę wszystkich danych , nawet gdy obydwa dyski są sprawne. Proszę o informację, czy to się zgadza i jak zrobić czy co kupić żeby mieć RAID1 a nie jakieś badziewie.
pozdr.
Poniżej oryginał z opinii na AMAZON.
I bought this intending to use it in RAID 1 mode to get extra protection against a disk failure. It should be obvious to Western Digital that the provision of RAID 1 would mean that it would be bought by users wanting to make loss of data due to failure of a single disk less likely. (And yes, I know RAID 1 doesn't guarantee safety and that a further backup is advisable. That's not the point - the point is that anyone buying it to use in RAID 1 mode would clearly be expecting significantly more safety than would be provided by a standard external hard drive from some other manufacture without RAID 1. However, due to action taken by Western Digital, this is not the case, and it would be impossible for Western Digital not to know this.
The drives are hardware encrypted. You cannot turn this encryption off. There is a password option, but even if you do not use this, the drives are still always encrypted. The electronics that do the encryption are built into the enclosure. The encryption/decryption key is built into a chip in the enclosure. The user has no access to this key.
Suppose the enclosure fails, and you cannot get it repaired easily. You may think that you can simply remove one of the drives and put it (for example) in a docking bay. However, the information on the drive is unreadable without the decryption key - the decryption key that is built into the enclosure: the drives are not readable outside the enclosure. It does not matter that the drives themselves may be fine: without the enclosure they are useless.
And that means that the "protection" provided by RAID 1 is useless: the redundancy of two drives is worthless, or at least has much less value is a failure of a single microchip can render the drives unreadable.
And in case you are wondering: Western Digital will NOT help you decrypt the drive if this happens. They will not provide you with the decryption key. They do not provide any software to extract the key from the drive while it is working. They will not do any recovery for you under warranty: if your unit fails, and you send it back, their stated policy is to wipe the drives. All they will do is refer you to one of their "partners" - data recovery companies who might be able to recover the data - possible using some information Western Digital has given them - for what will probably be a large fee. So, a failure of the enclosure is likely to be expensive - if you even get your data back.
