|
|
|
|
|
|
by __d
2523 days ago
|
|
|
I don't know a suitable manufacturer. But I'm curious: do you care about the physical form-factor of the server enclosure? When you say "chassis lid", it makes me think you're envisaging a 19" rack-mount server chassis? I had some exposure to an environment where all networking was fiber in a pressurized conduit with transparent faceplates, etc. There's some FIPS 140-2 L4 suitable plastic wrap/lining that's available for tamper detection, but that doesn't work without power applied, as far as I know. How far do you want to go here? It sounds like you just want the attempt logged, but don't want to wipe keys, or trigger the embedded thermite? |
|
|
An idea to wrap equipment in some kind of a sealant is interesting, but I suppose that we'll face overheating problems in this case.
There is no need to automagically wipe data or to explode anything: sensitive data is protected by encryption, during system startup key are loaded from external removable storage. But I have to be sure that software was not tampered with while server was offline.