...
4. The FLASH: drive is wiped.
EncryptStorage(device As String, params As roAssociativeArray) As Boolean
Encrypts the contents of a storage device using an encryption key stored in the private section of the player registry. This prevents other devices from reading the names or contents of files on the storage device (though metadata will still be readable). The storage device can still be mounted on other devices–which can list, delete, and copy files (even though they cannot read them).
Use the device parameter to specify which storage drive to encrypt (see here for a list of valid drive names). Encryption parameters are passed as an associative array, which can contain the following:
method As String:(Required) The encryption method, which can be one of the following:"none": Encryption is disabled and any encryption keys are deleted from the registry."passphrase": The storage device is encrypted using an un-obfuscated passphrase."obfuscated_passphrase": The storage device is encrypted using an obfuscated passphrase. Contact support@brightsign.biz to learn more about generating a key for obfuscation and storing it on the player."brightsign_key": The storage device is encrypted using an encryption key that is common to all BrightSign players, but is not shared with outside parties."generate_key": The storage device is encrypted using an encryption key that is generated on-demand using a secure random generator. The private registry of the player contains the only copy of the key; if the value in the registry is erased or becomes corrupted, there will be no way to recover data from that storage device.Warning title Important The private registry does not distinguish between different physical volumes of the same drive. For example, if you encrypt two SD cards, the key for the first SD card will be overwritten when the second SD card is encrypted.
passphrase As String: The passphrase for encrypting the storage device. This parameter must be included if the method is specified as"passphrase"or"obfuscated_passphrase".format As Boolean: Setting this parameter totruewill cause the specified storage device to be reformatted–all existing files will be deleted (but are not guaranteed to be securely erased) before the device is encrypted; however, if the device cannot be reformatted, the operation will fail. If this parameter is set tofalse, the storage device will be mounted as if it has been previously encrypted using the supplied key. If the storage device hasn't been previously encrypted, it will be encrypted while leaving any preexisting files unencrypted. If the storage device has been encrypted using a different key, the operation will fail.Note title Note If the
formatparameter is not specified, the storage device will be mounted as if it has been previously encrypted using the supplied key. If the storage device hasn't been previously encrypted, the operation will fail.