Enhanced Storage class driver
The Enhanced Storage class driver (ehstorclass.sys) is a system-supplied lower disk filter driver that detects Enhanced Storage functionality using the IEEE 1667 standard, and surfaces a separate management stack for each detected functionality. Currently, the functionality implemented in ehstorclass relates to security as defined by the Trusted Computing Group (TCG) Opal specification.
One of ehstorclass's Enhanced Storage capabilities is the ability to manage device-level security. Clients can use this functionality to enable and manage storage device built-in encryption and access control as defined by the TCG Opal standard.
A client sends IOCTLs defined in ehstorioctl.h to the ehstorclass driver for handling. Each enhanced storage function driver (that handles a silo) has its own specific set of IOCTLs. For the built-in security function, the IOCTLs are defined in ehstorbandmgmt.h.
See Enhanced Storage for more information. See Encrypted Hard Drive for an overview of how enhanced storage security feature is integrated in Windows.
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for