OPAL Encryption FAQ
Using OPAL Hardware Encryption, entrusts the security to the disk hardware vendor. ESET cannot verify or be liable for the strength of security in third-party devices and advise checking whether the disk in use has any known security vulnerabilities.
What is OPAL?
Full Disk Encryption (FDE) used to be a software only solution, however, a hardware based standard has emerged in the form of the OPAL Security Subsystem Class (SSC), commonly just referred to as OPAL.
What are the benefits?
Will my system support OPAL Full Disk Encryption (FDE)?
If you are unsure whether your system will support OPAL, please send us a support ticket with attached UEFI diagnostic log and we will be able to tell.
To obtain UEFI diagnostic log, please refer to this article: KB511 - How to obtain UEFI Diagnostic Log
If you have a OPAL 2.0+ compliant drive, it is expected to be supported.
OPAL FDE Minimum requirements
To FDE a system utilising OPAL, the system must meet the following requirements:
Can I use the machine's TPM as well as OPAL?
TPM is an authentication method independent of the encryption method. Therefore, you can use both OPAL and TPM.
In our testing, we have made a short list of disks that are compatible: