wavedreamer, my lay understanding is that
there is a drive resident encryption key (MEK?), and a user/network key to unlock the key (unlock the drive key)(KEK?).
It is the latter key, the user/network key that I think folks are speaking towards in SED key management. Without this the SEDs turn into enterprise bricks with some regularity one could imagine.
And, is not the deliberate ability to brick an SED (i.e. security) the ability to delete the key? So we have delete key, restore key, backup key ... key management. How does a drive resident encryption key get one out of the key management business?