-
- Memory
- Flash Cards
- USB Flash Drives
- Consumer & Small Business
- Mid Range
- Secure
- Imation S200 Basic (SLC) powered by IronKey
- Imation D200 Basic (MLC) powered by IronKey
- Imation S200 Personal (SLC) powered by IronKey
- Imation D200 Personal (MLC) powered by IronKey
- Imation S200 Enterprise (SLC) powered by IronKey
- Imation D200 Enterprise (MLC) powered by IronKey
- Kingston DataTraveler Locker+
- Kingston DataTraveler Vault – Privacy Edition
- Kingston DataTraveler 5000
- Pretec i-Disk Bullet
- Pretec CR50
- Kingston DataTraveler 4000
- Kingston DataTraveler Vault Privacy - Managed
- Kingston DataTraveler 4000 Managed
- Imation F50 Pivot
- Imation F100
- Imation F150 (Metal)
- Imation F200 Bio-metric
- Solid State Drives
- eSATA USB SSD
-
- Fuji
- Imation
- Kingston
- Wi-Drive
- System Specific Memory
- ValueRAM Memory
- HyperX
- Flash Cards & USB Drives
- Personalisation Program
- Datatraveler USB Pen Drives
- Datatraveler 100 G2
- Datatraveler Locker+
- Datatraveler Vault Privacy Edition
- DataTraveler 410
- DataTraveler 5000
- Datatraveler 101 G2
- DataTraveler 160
- Datatraveler DTIG3
- DataTraveler Ultimate 3.0 G2
- DataTraveler R500
- DataTraveler Mini Fun G2
- HyperX Max 3.0
- DataTraveler 4000
- DataTraveler 108
- DataTraveler R400
- DataTraveler 6000
- DataTraveler HyperX
- DataTraveler Micro
- DataTraveler Vault Privacy - Managed
- DataTraveler 4000 Managed
- DataTraveler SE9
- DataTraveler Elite 3.0
- Photo and Video Memory Cards
- Mobile Memory Cards
- SSD Now
- Pretec
- BlockMaster
Following the recent news about NIST-certified USB Flash drives with hardware encryption being cracked, IronKey have reported their devices do not suffer from this vulnerability. According to reports these security flaws resides in the password-handling process.
Is IronKey vulnerable to this hack?
No. IronKey security analysts have analysed the vulnerabilities that have been reported in the products in question. IronKey products do not suffer from this vulnerability. The data of IronKey customers is secure.
How is IronKey different?
IronKey devices are designed to be the most secure portable storage devices in the world. Years of security design and threat modelling have been applied to the design and development of IronKey devices. The key features are:
- IronKey devices verify the correctness of a user's password in hardware on the device. The security of IronKey devices does not depend on software on the host PC, which as this attack illustrates, can easily be tampered with.
- IronKey devices do not have unlock codes or backdoors.
- IronKey prevents password replay attacks by using nonces, and establishing an encrypted communication path between the device and the host PC.
- Every IronKey device has unique random AES encryption keys that are generated on the device when a user initialises it. These encryption keys cannot be exported from the device. Furthermore, these keys are themselves encrypted with a SHA-256 hash of the user's password, which lends another layer of cryptographic security to the protection of encryption keys.
- IronKey devices store encryption keys and password brute force counters in a tamper-resistant CryptoChip that has hardware protections against physical attack as well.
For further information on IronKey devices simply speak to your Simms account manager on 01622 852800 or sales@simms.co.uk today.
Sources:
"Secure USB Flaw Exposed", Dark Reading, 4 th January, 2010
"NIST-certified USB Flash Drives with Hardware Encryption Cracked", H-Online, 4 th January, 2010
USB Vulnerabilities Exploited - IronKey Customers Protected, 5 th January, 2010