Certain self-encrypting disks (SEDs) feature additional functionality to reset the disk to factory settings. These disks have a physical secure ID (PSID) printed on the disk label that is required to perform a factory reset.
The PSID is unique to each drive. It is printed on the disk label and visible to anyone with physical access to the SED. The PSID is not electronically retrievable from the SED. If the disk label is obliterated, the PSID is lost and cannot be recovered.
Using the PSID to perform a factory reset causes all disk parameters to be reset to factory original settings, including the following:
If the SED contained data, access to the data is permanently lost. The new unknown encryption key cannot be retrieved. This operation cannot be undone.
New data stored on the SED is not protected until the MSID is changed to a new secret authentication key.
If the SED was previously used but then set to end-of-life state using the disk encrypt destroy command, use of the PSID recovers the SED from this state and returns it to normal service state. However, it only returns it to factory original settings. It cannot in any way recover previously used encryption or authentication keys or restore access to previous data stored on the SED.