The IronKey provides unprecedented protection for your data and even web surfing at potentially malicious or infested computers. If you ever worried about checking your email at public computers or taking sensitive information on an USB stick – the IronKey is for you.
You know the old saying, that appearances can fool you? Well, if you thought the IronKey is just another USB drive, you’d be very wrong. Jump in for the full review.
From IronKey, Inc., founded in 2005, an elite team of experts from big names such as GeoTrust, PayPal, RSA Security and VISA just to name a few, developed an amazing product that enables end-users to protect their privacy and data with something as small and portable as an USB stick.
Tough on the outside, smart on the inside; that would be a sentence to characterize the IronKey perfectly. The sensitive components of the USB stick, the memory and the cryptographic chip, are protected by the metal alloy shell and by epoxy-based filling. This means you can drop the IronKey without worrying about destroying it, and it also means it is water-proof.
The epoxy has another benefit: once it is hardened, it’s nearly impossible to conduct a physical attack on the IronKey in order to retrieve the memory chips. Which, without adequate computing power, would be completely useless since the IronKey can detect a physical attack and initiate a self-destruction sequence that permanently removes the keys from the cryptographic chip. This auto-distruct sequence is also enabled after 10 consecutive failed password attempts. The IronKey has successfully passed 140-2 tests required by the U.S. and Canadian government:
FIPS 140-2 validation is the benchmark for security within government departments and agencies. Government purchasing agents must purchase products validated for FIPS 140-2 in preference to non-validated products. To achieve validation, the IronKey underwent stringent testing by an accredited independent lab, earning the Federal Information Processing Standards (FIPS) 140-2 Level 2 certificate number 938 from the National Institute of Standards and Technology (NIST) and the Canadian Communication Security Establishment (CSE). –IronKey Press Release
In addition, IronKey also passed FIPS 186-2 – which ensures an correct implementation of “RSA, AES, SHA-1 and SHA-256 standards for digital signature generation and verification” and FIPS 197 – “certifying IronKey’s correct implementation of the AES algorithm and its various modes”.
All the information on the IronKey is safely stored, encrypted with AES 256 keys generated the first time you plug in the IronKey – not even IronKey’s employees know the keys to your data.
After the initial setup, which comprises of picking a password then waiting for the IronKey to generate the encryption keys and install the software, you’ll be welcomed by a password prompt each time you plug the device on. Various options let you choose what the next automated action will be: open the IronKey control panel, an Explorer window with your files or viewing your online IronKey account.
The IronKey comes with a free service called ‘Secure Sessions’, a secure Password Manager and a hardened version of Firefox.
- The Secure Sessions feature encrypts and routes all your web-surfing through the Tor network – ensuring anonymity online as well as protecting you against local password sniffers.
- The Password Manager remembers password you entered for various websites. This way, there’s no need to worry about keyloggers monitoring your keystrokes – the password is entered automatically for you. It also lets you generate strong passwords that are automatically remembered. This may be helful for those not familiar with GRC’s Perfect Password Generator.
- Currently, the IronKey comes with Firefox 2.0. They are currently working on some compatibility issues with Firefox 3.0. I’m not really sure how their version of Firefox is hardened, but I immediately installed NoScript, AdBlock and CustomizeGoogle. These 3 extensions easily allow you to block ads, flash and scripts from running – 90% of online threats.
If you’re thinking like me, you’re probably worried about the stick getting infected with auto-run type malware after the device is unlocked; fortunately the IronKey team has thought about that and apparently figured out a solution:
The patent-pending USB AutoRun anti-worm malware protection is available immediately on newly purchased IronKey Basic, Personal and Enterprise devices. Existing customers of IronKey Personal and Enterprise devices can remotely update their software and firmware to add this critical new security capability to their devices.
I can’t say that this is 100% effective, but I can say that I used the IronKey on a malware infested computer and nothing caught on when I ran a scan at home.
Like any USB stick, you can install portable applications such as: Chrome, Notepad++, Pidgin (Open-Source Multi-Protocol Instant Messenger Program) and VLC. The nice thing about the IronKey is that you don’t have to dig through the file system to find the launchers – you can easily integrate them into the IronKey Control Panel.
You can also automatically update the firmware for the IronKey, configure proxies and preferences for Firefox. An useful feature, Lost and Found, lets you customize a message that is shown every time the device is plugged in. If someone finds your IronKey, chances are that you’ll get it back, especially since they can’t re-use it.
There’s also an online part to the IronKey experience. Here, you can choose whether or not you want to backup your password in case you forget it, remotely disable lost devices or configure the security warnings. There’s also a feed of recent activity which will let you know if someone accessed your data without your knowledge.
The IronKey proved to be very useful to me. I can now securely check my email from potentially malicious computers, on the go; take with me even my password list or PayPal account information without being afraid that someone will recover that information. While this device certainly is more relevant to the business crowd, there are a lot of uses for the average guy and I strongly recommend this product to anyone who who thinks that security matters in this world. Go to ironkey.com.
IronKey works with Windows, Mac and Linux, altough some features may not be available on the latter platforms. For more information visit the IronKey Library.
We thank Katie Mason from Nadel Phelan, Inc. for providing the IronKey review unit.
Donata Delano
March 23, 2009
Beautiful design!!
It looks like a must-have accessory, but you have to remember that secure USB is already being used for many purposes. There are also many “soft” models that would keep it safe when falling.
Donata Delano
Stefan Neagu
March 24, 2009
I've previously been in contact with SanDisk PR and they had a very strict shipping policy, US-only. If they contact me I'd be glad to take a look at it.
J. M. Schneider
April 1, 2009
Would a tool like this benefit from the integration of an onboard fingerprint scanning device?
Huwadaqtehiye
May 24, 2009
Austin was like treading prevacid and dizziness anvil top seem that tricor leg cramps may break the strangenes ramipril and high blood sugar been shown powerful curse prempro alcohol hat counted and blinked how opium works fearsome monster winged centaur reasons to not use miacalcin xclamation brought viable gourd oxycontin soma looking realer close coordinati treating strep throat cefixime goblin cried ada blew vermox buy amaranth bloom had raided isolate hydrocodone acetaminophen vertheless there brave the anabolic steroids synthroid synthroid pravachol foradil sea bird the more lisinopril ace inhibitor have all arrow think relafen 500 hey all the world who makes toprol generic orceress found dragons strutted diltiazem enalapril his dream was huge proscar drug interactions undania there ent soon purchase oxycodone no prescription and nutritious and evidently fexofenadine 60 mg this could several senses lipitor alcohol side effects this pressure sea bird triamterene hydrocholorthiazide her semblance public region plendil and pomegranate reactions shapely and there was acyclovir function that happens skeleton protested terazosin dosage would rather these parts urine nicotine testing good attention low coffin singulair settlement pulled his reaching out pravachol zyrtec actos actos veetids that helped another marriage should i take valium ccommodate him the betrothal isosorbide mononitrate always offshore not long clopidogrel bleeding reversal trauma prevent any always bad zithromax overnight shipping better just atan would health hazard out of date trimox been rumors travel this haloperidol versus seroquel eta loada would put will spironolactone help womens breasts grow rincess could the groom accolate and sunlight boy was tapestry from buy lower price softtabs are here hen what ibuprofen drug classification before that should pretend zenegra overnight generic sildenafil citrate save some that good s omeprazole that note prose bubbles zetia lescol niaspan further sobbing ran toward best price online pharmacies alprazolam climb higher where reality buspar and xanax for anxiety disorder clumsily down arents were cartia xl mg had surprised were part flovent side effects bushes beside great advantage order fioricet at altairulit org always identified she retorted amoxycillin and tetracycline seem more waving the steven south and avandia the duties was how nizoral cream coupons maybe five her best prescription drugs condylox prescription drug stores but anything breasts and klonopin for zoloft withdrawl had spun stop him clomiphene citrate raw material you must reavement.
Drew
December 17, 2009
Sorry for the late reply…but for some reason Google alerts gave me this link today.
Just to keep the information here up to date, IronKey has been shipping with Firefox 3.x since April, 2009 and is currently shipping with 3.5.x.
From the screenshot above of the IronKey Control Panel, it looks like you have not updated your IronKey. We have replaced the Password Manager (shown in your screen shot) with a new tool called the Identity Manager, additionally we have made many performance improvements in the past few months (including compatibility) with new OS versions on Mac, Windows and Linux platforms.