It recently came out that NSA is planting spyware directly into the firmware of hard disks. This makes it possible to survive formats and remain on the system indefinitely. Since there are so many models of hard disks it would be impossible to identify and remove the spyware from all of them.
So my question is, whether it would be possible to design an intermediary board that would scramble the information, thusly prevent the spyware from communicating with the outside world?
I imagine it would work somewhat like this: A black box is connected between the PC and the HDD. The PC thinks that the black box is a HDD. The HDD thinks the black box is a PC.
The black box takes any data sent by the PC and encrypts it with a key before sending it to the actual HDD. When asked for data the black box reads the encrypted data from the HDD, decrypts it and sends it to the PC.
- The PC only ever sees cleartext. It never sees the key or the cyphertext.
- The HDD only ever sees cyphertext. It never sees any cleartext or the key.
- The key can only be loaded manually from a separate port (JTAG, PS/2 or even DIP switches). Once loaded it is not accessible to the outside. Loading a new key erases the previous key.
What do you guys think? Possible?