NCCoE ANNOUNCES KICKOFF OF SUPPLY CHAIN ASSURANCE PROJECT

For More Information Contact:
Bill Downer
Bill.Downer@seagategov.com

Herndon, VA – January 11, 2021 – Seagate Government Solutions, a FOCI-mitigated subsidiary of Seagate Technology, announced the start of a supply chain assurance project with the National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) and key industry partners. Set to run over the next several months, the project plans to develop sample configurations and publications that will help organizations reduce a supply chain compromise risk by showing how commercially available technologies, such as Seagate SecureTM Device Authentication and Firmware Integrity Attestation available on Exos hard disk drives (HDD), can improve the security of cyber supply chains.

“Securing the supply chain and verifying the integrity of devices is of paramount importance to the U.S. Federal Government. Additionally, there is pressure to assure that their data is safe and accessible to only those authorized to access it,” said Mike Moritzkat, Managing Director/CEO, Seagate Government Solutions, “We are excited about the opportunity to work with NCCoE and its partners to provide a baseline of supply chain integrity to the device level.”

The NCCoE, a collaborative hub where industry, government agencies, and academic institutions work together to address businesses’ most pressing cybersecurity challenges, will release a draft practice guide, Validating the Integrity of Computing Devices1, to leverage industry, government, and academic expertise. Seagate will work with other vendors collaborating on this venture including Dell, Eclypsium, HP, Hewlett Packard Enterprise, Intel, and RSA to successfully develop one or more example solutions that organizations can reference to verify that the components in a computing device match the attributes and measurements declared by the manufacturer.

“Providing solutions to ensure the protection of our customers’ data is imperative for Seagate. We are committed to leading the development and implementation of software and hardware-based protections,” said Joan Motsinger, Senior Vice President, Business Excellence, Seagate Technology. “Seagate looks forward to continuing our history of working with Seagate Government Solutions, NIST, and the NCCoE, and to supporting efforts to showcase how security technologies can provide confidentiality, integrity, and trusted availability of data.”

“Using cryptographically strong methods to validate device authenticity and integrity is essential to how much we should trust compute and storage systems,” said Manuel Offenberg, Managing Technologist, Research Group at Seagate Technology. “Our Seagate SecureTM functionality helps system builders and integrators to securely verify our storage devices, which improves overall system integrity and provides increased data protection. I would like to thank Seagate Government Solutions and NIST NCCoE for leading this secure supply chain effort and look forward to the final project results.”

About Seagate Government Solutions

Seagate Government Solutions is a U.S.-based business entity of Seagate Technology focused on the federal government’s big data, scale-out storage, and security needs. Seagate Government Solutions will draw from Seagate’s purpose-engineered storage and security storage technology – encompassing a robust supply chain, from components and storage devices to file systems – to deliver the levels of security, performance, efficiency, complexity reduction, and risk mitigation especially needed in this space.

About Seagate

Seagate Technology crafts the datasphere, helping to maximize humanity’s potential by innovating world-class, precision-engineered data management solutions with a focus on sustainable partnerships. Learn more about Seagate by visiting www.seagate.com or following us on Twitter, Facebook, LinkedIn, YouTube, and subscribe to our blog.

1While the example implementation uses certain products, including Seagate Exos Hard Drives, NIST and the NCCoE do not endorse these products. The guide presents the characteristics and capabilities of those products, which an organization’s security experts can use to identify similar standards-based products that will fit within with their organization’s existing tools and infrastructure.

©2020 Seagate Technology LLC. All rights reserved. Seagate, Seagate Technology, and the Spiral logo are registered trademarks of Seagate Technology LLC in the United States and/or other countries. Exos and Seagate Secure are either trademarks or registered trademarks of Seagate Technology LLC or one of its affiliated companies in the United States and/or other countries. All other trademarks or registered trademarks are the property of their respective owners. When referring to drive capacity, one gigabyte, or GB, equals one billion bytes, and one terabyte, or TB, equals one trillion bytes. Your computer’s operating system may use a different standard of measurement and report a lower capacity. In addition, some of the listed capacity is used for formatting and other functions, and thus will not be available for data storage. Actual data rates may vary depending on operating environment and other factors.