Security of Solid-State-Drive Encryption

Fundamental flaws in the encryption system used by popular solid-state drives (SSDs) can be exploited by miscreants to easily decrypt data, once they've got their hands on the equipment.
https://www.theregister.co.uk/2018/11/05/busted_ssd_encryption/

and this is also a topic at Schneier - which has a great comments section
https://www.schneier.com/blog/archives/2018/11/security_of_sol.html

 

"Basically, the cryptographic keys used to encrypt and decrypt the data are not derived from the owner's password, meaning, you can seize a drive and, via a debug port, reprogram it to accept any password. At that point, the SSD will use its stored keys to cipher and decipher its contents. Yes, it's that dumb."

What the ****



Sure, maybe this could be extremenly bad engineering...but on second thought...maybe this thing belongs to "unintentional" backdoor category.

Just like the Ciscos five "unintentional" backdoors in five months this year...

 

From that research paper under ATA Security:

Yaaaaaaay!!!

EDIT: And the fact that there is a such thing as master password in the first place....
Nope, not a backdoor...just unintentional slip....