Build a Mini-ITX Data Vault with Hardware-Based Data Encryption

It's sad but true: Viruses, worms, rootkits and identity and information theft have become everyday parts of mainstream computing. As a result, the protection of personal and business information on hard drives and removable storage (used for data vaulting) has become an issue at the forefront for IT security pros. It should also be of great interest to system builders.

Advances in threat-detection and data encryption have created a demand for software firms like WinMagic and Cypherix, whose packages can protect individual files or entire disks. You can even encrypt folders under Window XP, but there are costs associated with these solutions when it comes to performance. Specifically, if your CPU is tied up encrypting and decrypting files, it has less time to work on instructions associated with your applications. The result—at least on busy systems—is slow response times, often accompanied by the dreaded hourglass icon.

The solution? Pick and use components with hardware-based data encryption. By working with these components, you'll get a data vault with better performance—and save money, too.

In this Recipe, I'll show you how to beat the performance and cost of software data encryption by building with slick, powerful components that feature breakthrough hardware-based encryption technology.

Further, with this sleek mini-ITX data vault, you can lock up critical data in a tiny package. Best of all, your clients won't see decreased performance from data encryption. That's mainly because, unlike popular software encryption techniques, the complex encryption and decryption algorithms are built right into the mini-ITX mainboard.

At the heart of our data vault is a 6.7-inch x 6.7-inch mainboard that holds the usual complement of motherboard components—CPU, memory, and bus architecture—in a tight little package. It also packs a collection of low-level software routines written specifically to do some serious data encryption. These routines serve the same purpose as a software encryption package, but run much more efficiently, as they don't require loading or translation into hardware instructions.

We'll also equip our little data vault with an affordable (about $50) biometric security device built into the mouse that uses fingerprints to check who is at the keyboard. This will also help your customer manage passwords without having to write them down. This device uses Trueprint technology (more on this later) to read the ridges below the outer layers of a person's skin for foolproof fingerprint identification. That's a whole lot of security in a small and stylish package. Best of all, it's inexpensive.

For system builders who'd like to add hardware-based encryption to their client's existing systems, I'm also including an inventive, military-grade encryption add-on disk system. The result is a system that deters unauthorized users, as it requires an actual hardware key. By deploying this terrific security feature, your clients can easily slip the encrypted disk out of the PC for transport or safe storage.

The Big Picture on Mini-ITX

Mini-ITX's ultra-compact mainboard form-factor was developed by VIA Technologies, a Taiwanese company known for its mini-ITX innovation and manufacturing. The highly integrated features of mini-ITX mainboards from VIA and Phylon (to name but two) are ideal for building information and entertainment systems that are powerful, quiet, and small.

Protected by cases that are both ergonomic and innovative, mini-ITX mainboards can be used to build powerful, compatible PCs with a vastly reduced size. (For example, they're about two-thirds smaller than the FlexATX motherboard, the smallest of the ATX family.) These boards also pack all the punch of a full-sized PC, while running far cooler and more quietly. In short, these features have made mini-ITX solutions the most popular choice for embedded applications and appliance computing—anywhere space is an issue. (For more on mini-ITX, see the Resources section at the end of this Recipe.)

The Pros and Cons of Implementing a Mini-ITX Solution

Here's a brief summary of the highlights of working with a mini-ITX:

• Ultra Compact: Offers a 170 mm x 170 mm (roughly 6.7 in. x 6.7 in.) form factor.
• Highly Integrated: Boards carry an onboard processor and integrated I/O.
• Power Efficient: Low power consumption, cool operation.
• OS Compatible: Systems support Microsoft and Linux operating systems.
• Modular: Integrates with industry standard components.
• Secure: Mini-ITX boards feature onboard encryption technology.
• Quiet: Smaller means less noise, and fanless mini-ITX offer less noise with greater stability.
• Compatible Interfaces: Supports SATA drives, DIMM memory, PCI cars, and both USB and Firewire peripherals.

On the flip side, here are a few limitations you should consider before implementing a mini-ITX solution:

• Not Upgradeable: To reduce cost of manufacture, CPUs are permanently installed on the mainboard. The ZIF (Zero Insertion Force) socket on most modern motherboards makes up a significant part of the manufacture cost. In VIA's EPIA (Embedded Platform Innovative Architecture) architecture, the company integrated the mainboard and CPU and removed the socket to streamline production and reduce costs.

• Limited Expandability: Typical cases have limited real estate—that's the cost of going "small." Power supplies can be as small as 60 watts, limiting the addition of peripherals. Also, these boards have minimal PCI slots available.

• Higher Cost: The cost for an integrated mini-ITX mainboard is likely to be higher than a comparable ATX motherboard/CPU bundle.