iStorage datAshur PRO2 128 GB | Secure Flash Drive | FIPS 140-2 Level 3 Certified | AES-XTS 256-bit hardware encryption | Password protected | Dust/Water-Resistant |

ASK3-16GB

ASK3Z-128GB

ASK3-NX-128GB

IKD300S/16GB

IS-FL-DP2-256-256

Built tough from the inside out, the Aegis Secure Key 3.0 is our most rugged encrypted device featuring IP68 certification against blowing dust and sustained water immersion. The Secure Key 3 also boasts the largest storage capacity of any device in its class. Software-Free, 100% hardware-based 256-bit AES XTS encrypted, onboard keypad PIN authenticated, and ultra-fast USB 3.1 (3.0) data transfer speeds. All Data is encrypted on the fly and the secure USB flash drive device’s PINs and Data remain encrypted while the drive is at rest. Completely cross-platform compatible and OS agnostic, thrives in Windows, Linux, Mac, Android, Chrome, embedded systems, and equipment in possession of a powered USB port and storage file system. All internal componentry is protected from physical tampering with a layer of hardened epoxy, and the firmware is locked down, making it immune to malware attacks such as BadUSB.

Meets the U.S. government standards for information technology and computer security. NIST FIPS 140 is the cryptography standard program required by the US federal government for protection of sensitive data. The Aegis Secure Key’s FIPS 140-2 validation covers 11 areas of its cryptographic security system, including physical security, cryptographic key management and design integrity. Available in four levels, the Aegis Secure Key’s FIPS 140-2 Level 3 validation encompasses both the Aegis Secure Key’s physical tamper-resistant features as well as its identity-based authentication. Tested and validated by the National Institute of Standards and Technology (NIST) for use by the Federal governments of the USA, Canada and others, the Aegis Secure Key 3 is based on Apricorn’s FIPS 140-2 Level 3 validated encryption module as indicated by certificate #2834. The Secure Key’s security policy is located on the NIST site at the following link. The epoxy coated boundary includes all encryption functions and all Critical Security Parameters (CSPs) such as PIN storage, encryption key generation and storage, random number and seed generators, all firmware storage, and device storage. The FIPS module is a complete encryption system, and all CSPs never leave the boundary and are never shared with a host system.

Windows-Based App that Quickly Sets Up Multiple Devices Simultaneously. Create custom profiles and mass configure multiple devices in a matter of seconds using the Aegis Configurator. To configure an expanded number of devices, use the Powered Aegis Configurator Hub bundle.

Admin (Device Configuration) Mode and User Access Mode. The Aegis Secure Key secure USB flash drive supports independent Admin and User PINs. The Admin mode controls the universal programmable settings of the device and can only be accessed with the Admin PIN. The User mode is limited to basic external drive functions like read /write, unlock / lock, etc. The data on the drive can also be accessed with the admin PIN in the User mode.

Drive is Unlocked by Entering a PIN on Keypad and not the Host Computer’s Keyboard. Until the device is unlocked via its keypad, it remains invisible to the host. The embedded keypad circumvents all hardware and software key logging attempts to capture passwords by excluding the host system from the authentication process. Polymer-coated buttons are wear-resistant and designed to not reveal most commonly used buttons.

Unique PIN Must be Established at Time of Setup. Eliminates Factory Default PIN Vulnerability. Out of the box, there are no factory pre-set default PINs. In order to set up and use the drive, a unique PIN must first be established by the Admin, from within the Admin mode.

Admin Can Program Device at Setup Requiring User to Establish a Unique PIN. Once a device is configured by the Admin, it can then be deployed in a state of USER FORCED ENROLLMENT in which the User must first establish his or her own User PIN before the drive can be accessed or used.

Aegis Secure Key 3z Merges Advanced Data Protection, Affordability, and Mass Configurability
Easy to use USB 3.0 flash drive with on-the-fly 256-bit AES hardware encryption, onboard secure PIN access and FIPS 140-2 Level 3 validation.

With software-free operation, cross-platform compatibility, USB 3.0 speed, Aegis Configurator compatibility, and our most advanced security feature set, Apricorn’s Aegis Secure Key 3z takes advanced data security to a new level of efficiency and affordability.

FIPS 140-2 Level 3
to meet the U.S. government standards for information technology and computer security. NIST FIPS 140 is the cryptography standard program required by the US federal government for protection of sensitive data.

The Aegis Secure Key’s FIPS 140-2 validation covers 11 areas of its cryptographic security system, including physical security, cryptographic key management and design integrity. Available in four levels, the Aegis Secure Key’s FIPS 140-2 Level 3 validation encompasses both the Aegis Secure Key’s physical tamper-resistant features as well as its identity-based authentication.

Utilizes Military Grade 256-bit AES XTS Hardware Encryption
All data on the Aegis Secure Key is encrypted on the fly with the built-in 256-bit AES XTS hardware encryption.

Onboard Alphanumeric Keypad – Prevents Hardware and Software Key Logging
Using a rechargeable battery, the Aegis Secure Key enables the user to unlock the drive with a 7-16 digit PIN BEFORE connecting to the USB port on your computer, tablet or mobile device. The embedded keypad prevents hardware and software key logging attempts to capture your password entered via the host system.

Software-Free Design – With no admin rights to contend with, the Aegis Secure Key is a breeze to implement

Aegis Configurator Compatible
Create custom profiles and simultaneously mass configure multiple Secure Keys in a matter of seconds with Apricorn’s new Aegis Configurator / Powered Hub bundle.

Independent User and Admin PINs
The Aegis Secure Key can be configured with independent User and Admin PINs, making it ideal for corporate and government deployment. If the User forgets their PIN, the drive can be unlocked using the Admin PIN which can then clear the forgotten User PIN and allow for the User to set a new PIN.

User Forced Enrollment
Once a device is configured by the Admin, it can then be deployed in a state of USER FORCED ENROLLMENT in which the User must first establish his or her own User PIN before the drive can be accessed or used.

Data Recovery PINs
In the event that a User PIN is forgotten, up to 4 one-time use recovery PINs can be programmed to permit access to the drives data by creating a new state of User Forced Enrollment.

Drive Reset Feature
The Aegis Secure Key also includes a drive reset feature which clears both User and Admin PINs, destroys the data, creates a new randomly generated encryption key and allows the drive to be reused. The Aegis Secure Key is capable of generating an infinite number of randomly generated encryption keys, allowing the user to reset the drive as often as required.

Dust and Water Resistant Durable Aluminum Housing - IP57 Certification
Protecting data goes well beyond encryption. Tough enough to go anywhere, the Aegis Secure Key 3z's resilient design makes it perfect for travel and field applications. With its rugged, extruded aluminum crush-resistant casing, the Aegis Secure Key 3z is tamper evident and well-protected against physical damage.

Sealed from Physical Attacks by Tough Epoxy Coating
The internal drive components are completely protected by a super tough epoxy compound, making it virtually impossible to remove without causing permanent damage to the electronics. This barrier prevents a potential hacker from accessing the encryption circuitry and launching a variety of potential attacks.

Brute Force Self Destruct Feature
As the Aegis Secure Key is unlocked using its own keypad and not via a keyboard, it is not vulnerable to software/hardware based key-loggers or brute force attacks. In addition the Aegis Secure Key further protects your data with a programmable “Brute Force Hack Defense Mechanism” which deletes the encryption key and destroys all stored data if the incorrect PIN is entered up to a total of 20 consecutive times.

Unattended Auto Lock feature
The Aegis Secure Key automatically locks once you unplug the drive from your computer's USB port or power to the USB port is turned off or after a pre-programmed period of inactivity

Wear Resistant Key Pad
Designed with protection in mind, the entire Aegis Secure Drive family incorporates ‘wear resistant’ keypads to hide key usage and avoid tipping off a potential hacker to the commonly used keys.

Two Read-Only Modes
The Secure Key 3z has two read-only modes. One is set by the admin in the admin mode and can’t be modified or disabled by anyone other than the admin. The second read-only mode can be set and disabled by a user but can also be overridden by the admin as well. Ideal for situations where the contents of the Secure Key needs to be accessed by several people in a public setting, or for forensic applications where the drive's contents must be kept intact and unaltered for later examination. Lock Override Mode
Designated for specific cases in which the key needs to remain unlocked through USB port re-enumeration such as during reboot, or passing through a virtual machine.

The NeXt Generation of Secure Key: the Aegis Secure Key 3NX
Our fourth generation of Secure Keys brings next generation security features, up to 25% cooler operating temperatures, and an even lower cost. Software-Free, 100% hardware-based 256-bit AES XTS encrypted, onboard keypad PIN authenticated, and ultra-fast USB 3.1 (3.0) data transfer speeds. All Data is encrypted on the fly and the device’s PINs and Data remain encrypted while the drive is at rest. Completely cross-platform compatible and OS agnostic; thrives in Windows, Linux, Mac, Android, Chrome, embedded systems, and equipment possessing a powered USB port and storage file system. All internal componentry is protected from physical tampering with a layer of hardened epoxy, and locked-down firmware brings immunity to malware attacks such as BadUSB.

Featuring AegisWare
The heart and soul of every Apricorn Secure Device, AegisWare is our patent-protected firmware combined with the industry’s most advanced feature set.

FIPS 140-2 Level 3 Validation (pending 4Q 2019)
Meets the U.S. government standards for information technology and computer security. NIST FIPS 140 is the cryptography standard program required by the US federal government for protection of sensitive data.

Aegis Configurator Compatible:
Windows-Based App that Quickly Sets Up Multiple Devices Simultaneously. Create custom profiles and mass configure multiple devices in a matter of seconds using the Aegis Configurator. To configure an expanded number of devices, use the Powered Aegis Configurator Hub bundle.

Separate Admin and User Mode:
Admin (Device Configuration) Mode and User Access Mode. The Aegis Secure Key supports independent Admin and User PINs. The Admin mode controls the universal programmable settings of the device and can only be accessed with the Admin PIN. The User mode is limited to basic external drive functions like read /write, unlock / lock, etc. The data on the drive can also be accessed with the admin PIN in the User mode.

Polymer-Coated Wear-Resistant Onboard Keypad:
Drive is Unlocked by Entering a PIN on Keypad and not the Host Computer’s Keyboard. Until the device is unlocked via its keypad, it remains invisible to the host. The embedded keypad circumvents all hardware and software key logging attempts to capture passwords by excluding the host system from the authentication process. Polymer-coated buttons are wear-resistant and designed to not reveal most commonly used buttons.

Admin Forced Enrollment:
Unique PIN Must be Established at Time of Setup. Eliminates Factory Default PIN Vulnerability. Out of the box, there are no factory pre-set default PINs. In order to set up and use the drive, a unique PIN must first be established by the Admin, from within the Admin mode.

User Forced Enrollment:
Admin Can Program Device at Setup Requiring User to Establish a Unique PIN. Once a device is configured by the Admin, it can then be deployed in a state of USER FORCED ENROLLMENT in which the User must first establish his or her own User PIN before the drive can be accessed or used.

Data Recovery PINs:
Creates State of User Forced Enrollment that Restores Access to Drive. In the event that a User PIN is forgotten, Recovery PINs can be programmed into the device to permit access to the drive’s data by creating a new state of User Forced Enrollment while the Admin PIN and the drive’s data remain intact. Once a replacement User PIN is generated, access to the drive is restored for the user.

Two Read-Only Modes:
Global, All Access Settings Controlled by Admin, and User Mode Controlling Individual Settings. Employed in situations that require the drive’s contents to be kept intact and unaltered for later examination. The two Read-Only modes are as follows: Universal Read Only is set by the admin from within the admin mode and can’t be modified or disabled by anyone but the admin. The second read-only mode can be set and disabled by a user but can also be enabled or disabled by the admin as well.

Programmable PIN Lengths:
Admin Designates Minimum and Maximum PIN Lengths (between 7 and 16 Characters). The longer the PIN, the more secure the data on the device becomes. For example, the odds of brute force success go from 1/10,000,000 with a 7-digit PIN to 1/100,000,000 with an 8 digit PIN. In cases where the User sets up his or her own PIN from User Forced Enrollment, the Admin can set an enhanced User password length requirement as part of the overall security policy.

PIN Guard
Detects inadvertent button presses and puts the device back into sleep mode to prevent battery drainage and false brute force attempts.

Fixed Disk or Removable Media (U.S. Patent No. 10,338,840)
Can be Configured as Fixed Disk or Removable Media in Device Setup. Easily adapts to embedded equipment and OSs that will only recognize one or the other for removable storage. Windows, Mac, and Linux all deal with Mass Storage devices differently depending on whether they report themselves to the host as Removable Media or as Fixed Disks. Some applications or embedded systems may allow one type but not the other. Example: Windows 2 Go will work with devices that report as Fixed Disk but not as Removable Media. Alternately, there are USB boot drive creators and Windows imaging tools that will only work with Removable Media and not with Fixed Disk. It’s not uncommon for older equipment with built-in USB ports (such as those found in hospitals, manufacturing, and monitoring) to seek only Removable Media and ignore all Fixed Disk devices. U.S. Patent No. 10,338,840

Brute-Force Defense:
Select the Number of Consecutive Invalid PIN Attempts Permitted (4-20) Before Crypto-Erase. All Aegis Secure Drives are unlocked (authenticated) by entering a PIN on their own onboard keypad. Since the PIN is not entered using the host computer’s keyboard, they are not vulnerable to software or hardware-based key-loggers or software-based brute force attacks. However, if the device comes under a physical brute force attack, your data is protected with a programmable “Brute Force Hack Defense Mechanism” which, if the programmed number (between 4 and 20) of consecutive incorrect password entries has been attempted, the device will delete its own encryption key and destroy the ability to decrypt its stored data.

Unattended Auto Lock:
Programmable Period of Inactivity Permitted Before Drive Locks Itself. All Aegis Secure Drives will automatically lock once disconnected from a computer’s USB port or the power to that USB port is interrupted, or after a pre-programmed period of inactivity.

Lock Override:
Allows Drive to Remain Unlocked During USB Port Re Enumeration (Virtual Machine, Remote Boot). Designated for specific cases in which the key needs to remain unlocked through USB port re-enumeration such as during reboot, or passing through a virtual machine.

Drive Reset Feature:
All Apricorn Devices can be Reset and Redeployed Over and Over. Drive reset clears both the User and Admin PINs, destroys the data, creates a new randomly generated encryption key and allows the drive to be reused repeatedly, with an infinite number of randomly generated encryption keys, allowing the admin and or user to reset the drive as often as is needed.

Self-Destruct PIN:
When Programmed and Activated, Performs a Crypto-Erase and Becomes New Access PIN. The last line of defense for data security when the device’s physical security is at risk. The Self-Destruct PIN defends against these physically compromising situations by erasing the key’s contents, leaving it in normal working order appearing yet to be deployed.

LED Key Press Indicator:
Visually Confirms Successful Button Presses via the Device’s LEDs.

IP67 Certified:
Dust and Water Resistant Durable Aluminum Housing Protecting data goes well beyond encryption. Tough enough to go anywhere, the Aegis Secure Key’s resilient design makes it perfect for travel and field applications. With its rugged, extruded aluminum crush-resistant casing, the Aegis Secure Key is tamper evident and well-protected against physical damage.

Kingston’s IronKey™ D300S/SM USB Flash drive features an advanced level of security that builds on the features that made IronKey well respected, to safeguard sensitive information. It’s FIPS 140-2 Level 3 certified, with 256-bit AES hardware-based encryption in XTS mode. An essential pillar to setting security standards, corporate policies and data loss protection (DLP) best practices. An important element in the quest for compliance with industry standards and global regulations such as the GDPR.

For added peace of mind, the drive uses digitally signed firmware, making it immune to BadUSB, and enforces complex password protection* with minimum characteristics to prevent unauthorised access.

Encryption and decryption is done on the drive, with no trace left on the host system, and the drive locks down and reformats after 10 invalid attempts to protect against brute force attacks.

Rugged and secure, IronKey D300S/SM has a zinc casing and tamper-evident epoxy seal for physical security, so you can rest assured the drive will hold up, even in the most demanding situations.

Customisable, easy to use and waterproof up to 4 feet, conforming to IEC60529 IPX83**. SuperSpeed (USB 3.0) technology means you don’t have to compromise on speed over security.

On top of its industry-leading data protection, IronKey D300S / D300SM provides a unique serial number and barcode printed on drive and virtual keyboard.***.

Managed model
Requires SafeConsole or IronKey EMS software management system ****. This allows central management of drive access and usage across thousands of drives.

Either cloud-based or on-premises, it enforces drive-specific policies, such as password strength and retry limits, and lets administrators remotely disable lost or stolen drives, recover lost passwords and more.

Encrypted
With encryption, no one can access data that you have stored on the drive without knowing the password

Meet frequently requested IT requirements
IronKey D300S/SM is FIPS 140-2 Level 3 certified and TAA compliant so you can rest assured it meets the most frequently requested corporate and government IT requirements

Unique serial number and scannable barcode
To save time, simply read or scan the barcode when deploying, upon return or during any physical auditing.

Virtual Keyboard
Enables users to enter a password via mouse clicks, instead of using a physical keyboard; to reduce the risk of keylogging when using your encrypted drive on other computers.

The datAshur PRO2 is FIPS 140-2 Level 3 PIN authenticated, hardware encrypted USB flash drive incorporating a Secure Microprocessor that is Common Criteria EAL5+ (Hardware Certified).

The datAshur PRO² USB 3.2 Gen 1 flash drive is a PIN-authenticated, AES-XTS 256-bit hardware encrypted flash drive that securely encrypts, stores and protects data to military standards.

The datAshur PRO² allows you to safeguard valuable and sensitive data to ensure compliance with stringent data protection and confidentiality regulations and directives, such as GDPR, HIPAA, SOX, CCPA, DORA and more.

16GB, USB Type A, 195 MB/s read, 162 MB/s write, Hardware Encryption

128GB Aegis Secure Key 3z - USB 3.1 Flash Drive

77MB/s Read, 72MB/s, USB, Battery, 4Q 2019, IP-67, FCC, CE, VCCI, WEE, C-TICK, Windows, Mac, Linux, Android, Symbian

16GB D300S AES 256 XTS Encrypted USB Drive

iStorage datAshur PRO2 256 GB | Secure Flash Drive | FIPS 140-2 Level 3 Certified | AES-XTS 256-bit hardware encryption | Password protected | Dust/Water-Resistant |

Apricorn

Apricorn

Apricorn

Kingston Technology

iStorage