To get started, click accept below to bring up the cookies management panel. Next, tap or click on the Personalization button to turn on the chat feature, then Save.
Daniel Döring is Managing Director of EgoMind and is responsible for the operational business of the German software development provider. He is also Managing Director at smart2success GmbH where he oversees product development, information technology, and technology partnerships at the risk/project/change management provider. He draws on his experience and knowledge of areas including IT security and software development, which he has gained since 2004.
Previously, he was responsible for the development and expansion of the product portfolio, support, pre-sales, consulting, academy, and technology partnerships at the IT security manufacturer EgoSecure.
Ensuring Data Security with Encrypted USB Storage
USB storage drives continue to be widely used, especially in the era of remote work. Employees value having access to their data anytime, anywhere. Despite the availability of cloud storage and collaboration tools, the reliance on external data storage remains significant and necessary. People often feel more secure when their sensitive data is stored on devices under their control and within close physical reach. However, these external storage devices are sometimes lost or stolen, posing a risk of data breach. Therefore, it is crucial to always encrypt data stored on these storage devices.
Not All Drives Are Created Equal: Security, Vulnerabilities, and User Authentication
Compared to their software-encrypted counterparts, hardware-based encrypted drives like IronKey offer many benefits, such as faster read/write speeds and low usage overhead. This is due to their inherent encryption functionality, which does not require any encryption/decryption software to be installed on a host system to access the drive’s data.
Are hardware-encrypted USB drives secure? The most common commercial encryption technology is AES 256-bit. This is considered secure by NIST, which invented the widely used AES encryption standard. Ordinary users cannot bypass this encryption, and even hackers or targeted attackers typically do not invest the effort required to crack the actual encrypted cyphertext. Instead, attackers are more likely to exploit vulnerabilities in user behavior through social engineering attacks or the security implementation of storage drives.
User vulnerabilities include weak or guessable passwords caused by user fatigue of managing too many complex passwords. What is worse, however, is that security vulnerabilities can often exist within applications or drives. Attackers may attempt to spy on passwords during input or electronically attempt to manipulate the drive authentication process to gain access to the encrypted data.
This creates a problem for users of such drives—how can they trust the manufacturer to implement proper safeguards and security to ensure that data is protected against hackers and attackers who may find the drive or, even worse, have stolen it?
To ensure the security of the leading enterprise-grade IronKey Vault Privacy 50 series, Kingston Technology arranged for penetration tests to be performed by third-party experts who simulated hacking attempts to identify and address vulnerabilities rather than exploit them for criminal purposes. Pen testing is one of the best tools in cybersecurity to provide confidence in a device or software and ensure that the product’s security design is robust.
Benefits of Using Penetration-Tested IronKey VP50 Hardware-Encrypted USB Drives
Enhanced data security: Hardware encryption ensures that the data stored on the VP50-series drives is protected at rest and in transit. It uses a dedicated secure microprocessor embedded in the drive, making it resistant to software-based attacks as well as password guessing—this is known as BadUSB where the drive keeps track of invalid passwords and ultimately crypto-erases its contents to prevent access to the data. This added layer of security reduces the risk of unauthorized access and data breaches.
Ease of use: Hardware-encrypted VP50 drives are user friendly. They include built-in secure software authentication that runs without needing installation on a system, making it convenient for users to unlock and access their encrypted data. This eliminates the need for the complex encryption setups usually required with software encryption, simplifying the data protection process. As a result, the ease of using hardware-encrypted drives ensures that employees will be less likely to turn to insecure workarounds.
Compliance with security standards: Many industries and organizations have specific security and compliance requirements such as GDPR, which requires strong encryption of data. Hardware-encrypted IronKey drives often meet or exceed these standards, which includes FIPS 197 certified AES-256 bit encryption in XTS mode. FIPS 197 is a lab-tested certification that verifies the encryption is properly implemented as designed by NIST.
Protection from malware: Hardware encryption is performed entirely within the USB drive itself, meaning that encryption keys never leave the drive and are not exposed to the attached computer’s memory where they can be snooped upon, retrieved from swap or hibernation files, and discovered. This protects the drive’s data from malware that may be present on the host system trying to intercept the encryption keys.
Increased performance: Hardware encryption is faster than software encryption methods, as it offloads the encryption and decryption tasks to the dedicated secure microprocessor within the USB drive. This results in faster data transfers and improved overall performance compared to software-based encryption solutions, which use host PC resources.
Trusted vendor: The key benefit of successfully passing pen testing by an independent third-party is to assure customers that the drive is engineered to high security standards and can be trusted as a data protection device.
It is important to note that while pen-tested, hardware-encrypted USB drives provide significant security advantages, they should still be used in conjunction with other security measures, such as strong passwords, regular data backups, and secure data-handling practices, to ensure comprehensive data protection. In addition, enterprises need to implement good data security hygiene so all employees follow guidelines to properly safeguard sensitive information.
Pen-Testing Professionals Put Kingston IronKey VP50 to the Test
The established professional penetration testing team from SySS GmbH in Germany subjected Kingston Ironkey Vault Privacy 50 series (Type-A & Type-C®) drives to penetration tests, specifically focusing on user authentication and key handling within the user software.
The penetration testing was successfully completed without discovering any vulnerabilities, leading to Kingston IronKey receiving an Approved Security certificate from SySS GmbH.
With a longstanding reputation and strong trust, Kingston IronKey leads the way in hardware-encrypted USB drives, providing customized support tailored to your business requirements. Their exceptional "Ask an Expert" team ensures personalized advice that precisely aligns with your environment and unique needs.
#KingstonIsWithYou #KingstonIronKey
Was this helpful?
Ask an Expert
Planning the right solution requires an understanding of your project's security goals. Let Kingston's experts guide you.
Remembering to back up frequently can evade even the most experienced tech enthusiast. We’ll cover some simple tricks to ensure you can easily back up regularly.
The right way to securely store and access your files
For creatives producing content for high-profile clients, encrypted storage can secure your important files and help you fulfil your security responsibilities.
Organizations must consider revenue, profit, and risk equally in order to mitigate data security & cyber security risks. In this article, industry expert Bill Mew provides an insight into this topic.
Choosing the right SSD for your server is important since server SSDs are optimized to perform at a predictable latency level while client (desktop/laptop) SSDs are not. These difference result in better uptime and less lag for critical apps and services.
What strategies can organizations use to best secure customer data in a post-GDPR world with the ever-evolving nature of cyber security threats? Kingston pooled the knowledge of some of the UK’s most experienced commentators in cyber security to discuss how data protection has changed since the introduction of GDPR.
You already know that remote working is a business enabler. But the challenges posed to your network security and compliance with GDPR are too big to ignore.
The recent WannaCry ransomware made global headlines infecting and alerting everyone from government, healthcare, communication providers, automotive companies to corporations and the general public of their vulnerabilities.
Overall, Kingston / IronKey Encrypted USB Drives prove to be the best solution in reliability, compatibility and security for portable data protection solutions.
End-to-End Data Protection protects customer’s data as soon as it is transferred by the host system to the SSD, and then from the SSD to the host computer. All Kingston SSDs incorporate this protection.
This program offers the options most frequently requested by customers, including serial numbering, dual password and custom logos. With a minimum order of 50 pieces, the program delivers precisely what your organization needs.
Case in point, Heathrow Airport in London (October 30, 2017) uses Unencrypted USB Drives for its non-cloud storage. Unfortunately, they were not standardized on Encrypted USB drives. Their lack of implementing proper standards in data security / data loss protection with encrypted USB storage has now cost the EU a major breach of confidential and restricted information.
Linus breaks down hardware encryption making sure your files are safe and secure, especially when you're on the go. Make sure your portable storage is also safe and encrypted with Kingston Encrypted USB drives.
Testing is a cornerstone of our commitment to deliver the most reliable products on the market.
We perform rigorous tests on all of our products during each stage of production. These tests ensure quality control throughout the entire manufacturing process.
NVMe (Non-Volatile Memory Express) is a communications interface and driver that defines a command set and feature set for PCIe-based SSDs with the goals of increased and efficient performance and interoperability on a broad range of enterprise and client systems.
