Western Digital has integrated National Institute of Standards and Technology (NIST)-approved post-quantum cryptography into its Ultrastar UltraSMR hard disk drives, claiming the first implementation of this technology in hard drives, a move from theoretical planning to deployed hardware-level defense. These new drives directly address the growing threat of “harvest now, decrypt later” (HNDL) attacks, where adversaries collect encrypted data anticipating future decryption with quantum computers. Multiple hyperscale customers are currently qualifying the Ultrastar UltraSMR drives, signaling strong industry demand for quantum-resilient storage beyond preliminary discussions. By focusing on securing device-level trust, including firmware integrity and key management, Western Digital aims to establish a new baseline for data security in the age of rapidly evolving AI infrastructure and long-lived datasets.
Ultrastar HDDs Implement NIST-Approved Post-Quantum Cryptography
This proactive implementation isn’t focused on current vulnerabilities, but rather on preemptively safeguarding data against “harvest now, decrypt later” (HNDL) attacks, a tactic where encrypted data is collected with the intention of decryption once quantum computers capable of breaking current encryption algorithms become available. The integration of post-quantum cryptography centers on securing the device’s trust chain, from the manufacturing process through its operational lifespan, rather than solely encrypting data at rest. Western Digital’s implementation utilizes the ML-DSA-87 algorithm (NIST FIPS 204) for code signing, coupled with RSA for a dual-signing approach, combining established and emerging cryptographic standards for enhanced resilience.
This approach is particularly critical given the extended service life of enterprise storage infrastructure, which often remains in operation for five years or longer, a timeframe that could coincide with the emergence of powerful quantum computers. Dr. Xiaodong (Carl) Che, Chief Technology Officer and Senior Vice President at WD, explains that as AI data compounds and becomes more valuable and long-lived, securing it for the future is no longer optional. Western Digital intends to expand these post-quantum capabilities to additional enterprise hard drive product lines in the future, solidifying its commitment to building a secure foundation for the AI-driven data economy.
Long Data Lifecycles Drive Need for Quantum Resilience
The escalating longevity of data, particularly within artificial intelligence systems, is rapidly intensifying the demand for quantum-resilient storage solutions, shifting the focus from theoretical preparedness to practical hardware implementation. Western Digital’s strategy emphasizes operational continuity, incorporating dual-signing and rollback safeguards to facilitate deployment across existing systems without disruption. The company intends to broaden the availability of post-quantum cryptography across its entire enterprise hard drive product portfolio, signaling a commitment to establishing a new baseline for trust in AI infrastructure where security is fundamentally embedded, not an afterthought.
ML-DSA-87 Secures Ultrastar DC HC6100 Firmware Integrity
Western Digital is proactively addressing future threats to data security with the implementation of post-quantum cryptography in its Ultrastar DC HC6100 UltraSMR hard disk drives, a move signaling a shift from theoretical preparation to tangible hardware defenses. The integration of this technology reflects a growing recognition that long-lived datasets, particularly those fueling artificial intelligence applications, require protection extending decades into the future. The core of this enhanced security lies in the ML-DSA-87 algorithm, a NIST FIPS 204 standard for code signing, employed to secure the device’s firmware. Western Digital isn’t relying solely on this new standard, however, incorporating a dual-signing process utilizing established RSA cryptography alongside ML-DSA-87, creating a layered approach to resilience. This strategy acknowledges the transition period as quantum computing matures, ensuring continued security even if one cryptographic method is compromised.
Integrating post-quantum cryptography into our Ultrastar enterprise-class drives is part of our commitment to helping customers stay ahead of threats that are already present in the form of HNDL attacks.
Dr. Xiaodong (Carl) Che, Chief Technology Officer and Senior Vice President at WD
Harvest Now, Decrypt Later Threat Fuels PQC Adoption
This proactive approach to data compromise is driving adoption of quantum-resistant technologies like those now integrated into Western Digital’s Ultrastar UltraSMR hard disk drives. Western Digital is among the first to implement NIST-approved PQC in production storage infrastructure, a move that signifies a departure from purely theoretical discussions toward tangible hardware defenses. According to Western Digital, “Quantum computing represents one of the most significant technology transitions of our time, and it is advancing faster than many organizations anticipate.” The urgency stems from the extended lifespan of enterprise storage; systems often remain in service for five years or longer, potentially overlapping with the timeframe when quantum decryption becomes feasible.
As AI data compounds and becomes more valuable and long-lived, securing it for the future is no longer optional. Quantum computing represents one of the most significant technology transitions of our time, and it is advancing faster than many organizations anticipate. The security architectures that have protected enterprise storage for more than a decade will need to evolve.
Dr. Xiaodong (Carl) Che, Chief Technology Officer and Senior Vice President at WD
