Author
Published
4 Sep 2024Form Number
LP2017PDF size
16 pages, 152 KBAbstract
The ThinkSystem PM9D5a Mixed Use NVMe PCIe 5.0 x4 SSDs, available in capacities up to 12.8TB, are general-purpose yet high-performance NVMe PCIe Gen 5 SSDs. They are engineered for greater performance and endurance in a cost-effective design, and to support a broader set of workloads. Now with SED encryption as standard, these drives help ensure data security, even when the drive is removed from the server.
This product guide provides essential presales information to understand the PM9D5a SSDs and their key features, specifications, and compatibility. This guide is intended for technical specialists, sales specialists, sales engineers, IT architects, and other IT professionals who want to learn more about the SSDs and consider their use in IT solutions.
Introduction
The ThinkSystem PM9D5a Mixed Use NVMe PCIe 5.0 x4 SSDs, available in capacities up to 12.8TB, are general-purpose yet high-performance NVMe PCIe Gen 5 SSDs. They are engineered for greater performance and endurance in a cost-effective design, and to support a broader set of workloads. Now with SED encryption as standard, these drives help ensure data security, even when the drive is removed from the server.
The PM9D5a SSDs are available in the 2.5-inch form factor.
SED support: All drives listed in this product guide include SED drive encryption. Our naming convention for new drives doesn’t include SED in the name.
Did you know?
The PM9D5a SSDs are part of the new family of PCIe 5.0 SSDs that match the performance of the ThinkSystem V3 and V4 families of servers. By having a Gen 5 host interface, sequential performance is doubled compared to Gen 4 SSDs. The NVMe host interface also maximizes flash storage performance and minimizes latency.
Lenovo Mixed Used SSDs like the PM9D5a SSDs are suitable for mixed read-write and general-purpose data center workloads, however their NVMe PCIe interface means the drives also offer high performance. Overall, these SSDs provide outstanding IOPS/watt and cost/IOPS for enterprise solutions.
Part number information
The following table lists the part numbers and feature codes for ThinkSystem servers.
The part numbers include the following items:
- One solid-state drive
- Attached hot-swap tray (for hot-swap drives)
- Documentation flyer
Features
Non-Volatile Memory Express (NVMe) is PCIe high performance SSD technology that provides high I/O throughput and low latency. NVMe interfaces remove SAS/SATA bottlenecks and unleash all of the capabilities of contemporary NAND flash memory. Each of the PM9D5a SSDs have direct PCIe 5.0 x4 connection, which provides at significantly greater bandwidth and lower latency than SATA/SAS-based SSD solutions. NVMe drives are also optimized for heavy multi-threaded workloads by using internal parallelism and many other improvements, such as enlarged I/O queues.
The ThinkSystem PM9D5a Mixed Use NVMe PCIe 5.0 x4 SSDs have the following features:
- Available as a 2.5-inch drive in a hot-swap tray
- Direct PCIe 5.0 x4 connection for each NVMe drive, resulting in up to 14 GBps overall throughput, compared to 7.5 GBps for a PCIe 4.0 connection.
- Based on Samsung TLC flash technology
- Advanced ECC Engine and End-to-End Data Protection
- Samsung’s SSD virtualization technology allows a single SSD to be subdivided into smaller SSDs, up to 64, providing independent virtual workspaces. It also enables SSDs to take on certain tasks typically carried out by the server CPUs, such as Single-Root I/O Virtualization (SR-IOV), requiring fewer server CPUs and SSDs.
- V-NAND Machine Learning enables the SSD to accurately predict and verify cell characteristics, as well as detect any variations in circuit patterns.
- Fail-In-Place technology ensures the SSD operates normally even when errors occur at the chip level. It allows the SSD to identify failing NAND cells, and actually recover then relocate the data without interrupting normal operations or impacting performance.
- Protect data integrity from unexpected power loss with Samsung's advanced power-loss protection architecture
- Supports Self-Monitoring, Analysis and Reporting Technology (S.M.A.R.T).
- Supports the following specifications:
- PCI Express Base Specification Rev. 5.0
- NVM Express Specification Rev. 2.0
- NVM Express Management Interface Specification Rev. 1.2
SSDs have a huge but finite number of program/erase (P/E) cycles, which affect how long they can perform write operations and thus their life expectancy. Mixed Use SSDs have a higher write endurance compared to Read Intensive SSDs. SSD write endurance is typically measured by the number of program/erase cycles that the drive can incur over its lifetime, which is listed as total bytes written (TBW) in the device specification.
The TBW value that is assigned to a solid-state device is the total bytes of written data that a drive can be guaranteed to complete. Reaching this limit does not cause the drive to immediately fail; the TBW simply denotes the maximum number of writes that can be guaranteed. A solid-state device does not fail upon reaching the specified TBW. However, at some point after surpassing the TBW value (and based on manufacturing variance margins), the drive reaches the end-of-life point, at which time the drive goes into read-only mode.
Because of such behavior, careful planning must be done to use SSDs in the application environments to ensure that the TBW of the drive is not exceeded before the required life expectancy.
For example, the 1.6TB PM9D5a drive has an endurance of 8,760 TB of total bytes written (TBW). This means that for full operation over five years, write workload must be limited to no more than 4,800 GB of writes per day, which is equivalent to 3.0 full drive writes per day (DWPD). For the device to last three years, the drive write workload must be limited to no more than 8,000 GB of writes per day, which is equivalent to 5.0 full drive writes per day.
The benefits of drive encryption
All ThinkSystem PM9D5a Mixed Use NVMe PCIe 5.0 x4 SSDs support drive encryption.
Self-encrypting drives (SEDs) provide benefits in three main ways:
- By encrypting data on-the-fly at the drive level with no performance impact
- By providing instant secure erasure (cryptographic erasure, thereby making the data no longer readable)
- By enabling auto-locking to secure active data if a drive is misplaced or stolen from a system while in use
The following sections describe the benefits in more details.
Automatic encryption
It is vital that a company keep its data secure. With the threat of data loss due to physical theft or improper inventory practices, it is important that the data be encrypted. However, challenges with performance, scalability, and complexity have led IT departments to push back against security policies that require the use of encryption. In addition, encryption has been viewed as risky by those unfamiliar with key management, a process for ensuring a company can always decrypt its own data. Self-encrypting drives comprehensively resolve these issues, making encryption both easy and affordable.
When the self-encrypting drive is in normal use, its owner need not maintain authentication keys (otherwise known as credentials or passwords) in order to access the data on the drive. The self-encrypting drive will encrypt data being written to the drive and decrypt data being read from it, all without requiring an authentication key from the owner.
Drive retirement and disposal
When hard drives are retired and moved outside the physically protected data center into the hands of others, the data on those drives is put at significant risk. IT departments retire drives for a variety of reasons, including:
- Returning drives for warranty, repair, or expired lease agreements
- Removal and disposal of drives
- Repurposing drives for other storage duties
Nearly all drives eventually leave the data center and their owner's control. Corporate data resides on such drives, and when most leave the data center, the data they contain is still readable. Even data that has been striped across many drives in a RAID array is vulnerable to data theft because just a typical single stripe in today’s high-capacity arrays is large enough to expose for example, hundreds of names and bank account numbers.
In an effort to avoid data breaches and the ensuing customer notifications required by data privacy laws, companies use different methods to erase the data on retired drives before they leave the premises and potentially fall into the wrong hands. Current retirement practices that are designed to make data unreadable rely on significant human involvement in the process, and are thus subject to both technical and human failure.
The drawbacks of today’s drive retirement practices include the following:
- Overwriting drive data is expensive, tying up valuable system resources for days. No notification of completion is generated by the drive, and overwriting won’t cover reallocated sectors, leaving that data exposed.
- Methods that include degaussing or physically shredding a drive are expensive. It is difficult to ensure the degauss strength is optimized for the drive type, potentially leaving readable data on the drive. Physically shredding the drive is environmentally hazardous, and neither practice allows the drive to be returned for warranty or expired lease.
- Some companies have concluded the only way to securely retire drives is to keep them in their control, storing them indefinitely in warehouses. But this is not truly secure because a large volume of drives coupled with human involvement inevitably leads to some drives being lost or stolen.
- Professional disposal services is an expensive option and includes the cost of reconciling the services as well as internal reports and auditing. Transporting of the drives also has the potential of putting the data at risk.
Self-encrypting drives eliminate the need to overwrite, destroy, or store retired drives. When the drive is to be retired, it can be cryptographically erased, a process that is nearly instantaneous regardless of the capacity of the drive.
Instant secure erase
The self-encrypting drive provides instant data encryption key destruction via cryptographic erasure. When it is time to retire or repurpose the drive, the owner sends a command to the drive to perform a cryptographic erasure. Cryptographic erasure simply replaces the encryption key inside the encrypted drive, making it impossible to ever decrypt the data encrypted with the deleted key.
Self-encrypting drives reduce IT operating expenses by reducing asset control challenges and disposal costs. Data security with self-encrypting drives helps ensure compliance with privacy regulations without hindering IT efficiency. So called "Safe Harbor" clauses in government regulations allow companies to not have to notify customers of occurrences of data theft if that data was encrypted and therefore unreadable.
Furthermore, self-encrypting drives simplify decommissioning and preserve hardware value for returns and repurposing by:
- Eliminating the need to overwrite or destroy the drive
- Securing warranty returns and expired lease returns
- Enabling drives to be repurposed securely
Auto-locking
Insider theft or misplacement is a growing concern for businesses of all sizes; in addition, managers of branch offices and small businesses without strong physical security face greater vulnerability to external theft. Self-encrypting drives include a feature called auto-lock mode to help secure active data against theft.
Using a self-encrypting drive when auto-lock mode is enabled simply requires securing the drive with an authentication key. When secured in this manner, the drive’s data encryption key is locked whenever the drive is powered down. In other words, the moment the self-encrypting drive is switched off or unplugged, it automatically locks down the drive’s data.
When the self-encrypting drive is then powered back on, it requires authentication before being able to unlock its encryption key and read any data on the drive, thus protecting against misplacement and theft.
While using self-encrypting drives just for the instant secure erase is an extremely efficient and effective means to help securely retire a drive, using self-encrypting drives in auto-lock mode provides even more advantages. From the moment the drive or system is removed from the data center (with or without authorization), the drive is locked. No advance thought or action is required from the data center administrator to protect the data. This helps prevent a breach should the drive be mishandled and helps secure the data against the threat of insider or outside theft.
Technical specifications
Server support
The following tables list the ThinkSystem servers that are compatible.
Storage controller support
NVMe PCIe SSDs require a NVMe drive backplane and some form of PCIe connection to processors. PCIe connections can take the form of either an adapter (PCIe Interposer or PCIe extender/switch adapter) or simply a cable that connects to an onboard NVMe connector.
PCIe 4.0 & 3.0 support: The PM9D5a SSDs offer a PCIe 5.0 host interface, however they are backward compatible with a PCIe 4.0 or PCIe 3.0 host interface. Note however that servers or NVMe retimer/switch adapters with a PCIe 4.0 or 3.0 host interface will not see the same performance levels (especially sequential read and write rates).
Consult the relevant server product guide for details about required components for NVMe drive support.
Operating system support
The following tables list the supported operating systems.
Tip: These tables are automatically generated based on data from Lenovo ServerProven.
IBM SKLM Key Management support
To effectively manage a large deployment of SEDs in Lenovo servers, IBM Security Key Lifecycle Manager (SKLM) offers a centralized key management solution. Certain Lenovo servers support Features on Demand (FoD) license upgrades that enable SKLM support.
The following table lists the part numbers and feature codes to enable SKLM support in the management processor of the server.
The IBM Security Key Lifecycle Manager software is available from Lenovo using the ordering information listed in the following table.
The following tables list the ThinkSystem servers that support the FoD license upgrade.
Warranty
The PM9D5a SSDs carry a one-year, customer-replaceable unit (CRU) limited warranty. When the SSDs are installed in a supported server, these drives assume the server’s base warranty and any warranty upgrades.
Solid State Memory cells have an intrinsic, finite number of program/erase cycles that each cell can incur. As a result, each solid state device has a maximum amount of program/erase cycles to which it can be subjected. The warranty for Lenovo solid state drives (SSDs) is limited to drives that have not reached the maximum guaranteed number of program/erase cycles, as documented in the Official Published Specifications for the SSD product. A drive that reaches this limit may fail to operate according to its Specifications.
Physical specifications
The PM9D5a SSDs have the following physical specifications:
Dimensions and weight of the 2.5-inch drives (approximate, without the drive tray):
- Height: 15 mm (0.6 in.)
- Width: 70 mm (2.8 in.)
- Depth: 100 mm (4.0 in.)
- Weight: up to 170 g (6.0 oz)
Operating environment
The PM9D5a SSDs are supported in the following environment:
- Temperature (operating): 0 to 70 °C (32 to 158 °F)
- Temperature (non-operating): -40 to 85 °C (-40 to 185 °F)
- Relative humidity (non-operating): 5 to 95% (noncondensing)
- Maximum altitude: 3,050 m (10,000 ft)
- Shock, non-operating: 1,500 G (Max) at 0.5 ms
- Vibration, non-operating: 20 GPEAK (10-2000 Hz) at 4 min/cycle, 4 cycle/axis on 3 axis.
Agency approvals
The PM9D5a SSDs conform to the following regulations:
- Safety
- cUL
- CE
- TUV-GS
- CB
- EMC
- CE (EU)
- BSMI (Taiwan)
- KC (South Korea)
- VCCI (Japan)
- RCM (Australia)
- FCC (USA) / IC (Canada)
Related publications and links
For more information, see the following documents:
-
Lenovo ThinkSystem SSD Portfolio Comparison
https://lenovopress.com/lp1261-lenovo-thinksystem-ssd-portfolio - Samsung product page:
https://semiconductor.samsung.com/us/ssd/datacenter-ssd/ - Samsung blog post:
https://semiconductor.samsung.com/news-events/tech-blog/samsung-pm9d3a-solid-state-drive/
Trademarks
Lenovo and the Lenovo logo are trademarks or registered trademarks of Lenovo in the United States, other countries, or both. A current list of Lenovo trademarks is available on the Web at https://www.lenovo.com/us/en/legal/copytrade/.
The following terms are trademarks of Lenovo in the United States, other countries, or both:
Lenovo®
ServerProven®
System x®
ThinkSystem®
The following terms are trademarks of other companies:
AMD is a trademark of Advanced Micro Devices, Inc.
Intel® is a trademark of Intel Corporation or its subsidiaries.
Linux® is the trademark of Linus Torvalds in the U.S. and other countries.
Microsoft®, Windows Server®, and Windows® are trademarks of Microsoft Corporation in the United States, other countries, or both.
Other company, product, or service names may be trademarks or service marks of others.
Configure and Buy
Full Change History
Course Detail
Employees Only Content
The content in this document with a is only visible to employees who are logged in. Logon using your Lenovo ITcode and password via Lenovo single-signon (SSO).
The author of the document has determined that this content is classified as Lenovo Internal and should not be normally be made available to people who are not employees or contractors. This includes partners, customers, and competitors. The reasons may vary and you should reach out to the authors of the document for clarification, if needed. Be cautious about sharing this content with others as it may contain sensitive information.
Any visitor to the Lenovo Press web site who is not logged on will not be able to see this employee-only content. This content is excluded from search engine indexes and will not appear in any search results.
For all users, including logged-in employees, this employee-only content does not appear in the PDF version of this document.
This functionality is cookie based. The web site will normally remember your login state between browser sessions, however, if you clear cookies at the end of a session or work in an Incognito/Private browser window, then you will need to log in each time.
If you have any questions about this feature of the Lenovo Press web, please email David Watts at dwatts@lenovo.com.