Apricorn A25-3PL256-2000F Aegis Fortress 2TB Hard Drive

Apricorn, A25-3PL256-2000F, Aegis Fortress FIPS Validated 2TB USB 3.0 Hardware Encrypted Portable External Hard Drive

Features:

• Military-Grade 100% Hardware Encryption: Featuring AES-XTS 256-bit hardware encryption, the Aegis Fortress seamlessly encrypts all data on the drive in real time, keeping your data safe even if the hard drive is removed from its enclosure.
• Software-Free Design: The Aegis Fortress is ready to use right out of the box-no software, no drivers, no updates. It can even be utilized where no keyboard is present. Completely cross-platform compatible, the Fortress excels virtually anywhere- PCs, MACs, Linux, or any OS with a powered USB port and a storage file system.
• Configurable: Create custom profiles and mass configure multiple Configurator-compatible Aegis devices at once with Apricorn's Configurator / Powered Hub bundle.
• Embedded Keypad: All PIN entries and controls are performed on the keypad of the Aegis Fortress. No critical security parameters are ever shared with the host computer.
• FIPS 140-2 Level 2 Validated: The Aegis Fortress FIPS 140-2 validation is the cryptography standard required by the US federal government for the protection of sensitive data. It covers 11 areas of its cryptographic security system, including physical security, cryptographic key management, and design integrity. Tested and validated by the National Institute of Standards and Technology (NIST) for use by the Federal governments of the USA, Canada, and others, the Aegis Fortress Drive is based on Apricorn's FIPS 140-2 Level 2 validated encryption module as indicated by certificate #2835. The Fortress' security policy is located on the NIST site at The epoxy-coated boundary and includes all encryption functions and all Critical Security Parameters (CSPs) such as PIN storage, encryption key generation and storage, random number and seed generators, and all firmware storage. The FIPS module is a complete encryption system, and all CSPs never leave the boundary and are never shared with a host system. By design, the HDD/SSD that stores the encrypted data is excluded from this boundary to both maximize affordability and product line flexibility in capacity and form factor offerings.
• Lock-Override Mode: Designated for specific cases in which the drive needs to remain unlocked, e.g., during reboot, passing the drive through a virtual machine, or other similar situations that would normally prompt the Fortress to automatically lock. When enabled, Lock-Override Mode allows the drive to remain unlocked through USB port re-enumeration and will not re-lock until USB power is interrupted.
• Two Read-Only Modes: Perfect for accessing data on the drive in a public setting to protect against USB viruses. Particularly important in forensics, Read-Only Mode is ideal for applications that require data to be preserved in its original, unaltered state and can't be overwritten or modified. The Fortress has two read-only modes. One is set by the admin within the admin mode and can't be modified or disabled by anyone other than the admin. The second read-only mode can be set and disabled by anyone with a recognized PIN.
• Auto Lock feature and Self Destruct PIN: With the Aegis Fortress, you can set the unattended drive to lock after a pre-determined amount of time. Additionally, you can pre-program your own unique Self Destruct PIN which, once implemented, instantly destroys all PINs and data on the drive and creates a encryption key.
• Brute Force Protection: After a predetermined number (programmable; up to 20) of incorrect PIN entry attempts, the Aegis Fortress will conclude that it is under Brute Force Attack and will respond by performing a crypto-erase - deleting the encryption key which will render all of the drive's data useless.
• Wear Resistant Key Pad - Water & Dust Resistant: Designed with protection in mind, the Aegis Fortress's keypad is impervious to dust, grit, and water, and it's wear-resistant which defends against tipping off a potential hacker to the most frequently used keys on the drive.
• Integrated USB 3.0 Cable: Never forget your cables again. Connect the drive at the flick of a fingertip

Security:

• Onboard Wear-Resistant Keypad for Authentication: Unlock the drive with your own unique 7 to 16-digit PIN and the addition of the "Shift" key, the Aegis Fortress can double the number of possible PIN combinations, further preventing brute force access to the drive's data.
• Real-time 256-bit AES-XTS Hardware Encryption: 100% of your data is hardware-encrypted on the fly with military-grade, full-disk AES XTS encryption.
• Software-Free / Cross-Platform Compatible: Requires no software to set up or operate - completely cross-platform compatible; works with Windows, Mac, Linux, and embedded systems.
• Administrator Mode Allows the enrollment of one Administrator for setting parameters for PIN management, Read-Only, Auto-Lock, Self-Destruct, Lock-Override, and Brute Force.
• Forced-Enrollment / User Forced Enrollment: With no default factory preset PINs, the Admin is required to create a unique PIN at setup prior to use; the forced enrollment feature can also be extended to the first User PIN before use.
• Programmable Minimum PIN length: For added PIN length and enhanced security, the minimum PIN length requirement can be increased from 7 characters up to 16 maximum.

Tough on the outside, FIPS-validated HDD encryption on the inside, and pocket-sized portability to safely carry your data anywhere you go. The Aegis Fortress is Software-Free, 100% hardware-based 256-bit AES XTS encrypted, onboard keypad PIN authenticated, with ultra-fast USB 3.1 (3.0) data transfer speeds. All Data is encrypted on the fly and all PINs and Data remain encrypted while the drive is at rest. Completely cross-platform compatible and OS agnostic; the Aegis Fortress thrives with Windows, Linux, Mac, Android, and Chrome. It also thrives where software-authenticated encrypted devices can't function, such as embedded systems and equipment in possession of a powered USB port and storage file system but no keyboard. All internal componentry is protected from physical tampering with a layer of hardened epoxy, and the firmware is locked down to prevent any modifications making it impervious to malware attacks such as BadUSB.