Apricorn’s Widest Selection of Storage Capacities: Aegis Padlock DT
The perfect desktop encrypted storage device innovation for your most sensitive information, the Padlock DT delivers the ultimate data security in widest range of storage capacities. Software-Free, 100% hardware-based 256-bit AES XTS encrypted, onboard keypad PIN authenticated, and ultra-fast USB 3.1 (3.0) data transfer speeds. All Data is encrypted on the fly and the PINs and Data remain encrypted while the drive is at rest. Completely cross-platform compatible and OS agnostic, the Padlock DT thrives with Windows, Linux, Mac, Android, and Chrome. It also thrives where software-authenticated encrypted devices fail, such as embedded systems, or equipment in possession of a powered USB port and storage file system but no keyboard. All internal componentry is protected from physical tampering with a layer of hardened epoxy, and the firmware is locked down to prevent any modifications making it impervious to malware attacks such as BadUSB.
Military-Grade FIPS PUB 197 Validated Encryption:
Featuring AES-XTS 256-bit hardware encryption, the Aegis Padlock DT seamlessly encrypts all data on the drive on-the-fly, keeping all data at rest safe even if the hard drive is extracted from its enclosure.
Aegis Configurator Compatible:
Windows-Based App that Quickly Sets Up Multiple Devices Simultaneously. Create custom profiles and mass configure multiple devices in a matter of seconds using the Aegis Configurator. To configure an expanded number of devices, use the Powered Aegis Configurator Hub bundle.
Separate Admin and User Mode:
Admin (Device Configuration) Mode and User Access Mode. The Aegis Secure Key supports independent Admin and User PINs. The Admin mode controls the universal programmable settings of the device and can only be accessed with the Admin PIN. The User mode is limited to basic external drive functions like read /write, unlock / lock, etc. The data on the encrypted storage drive can also be accessed with the admin PIN in the User mode.
Polymer-Coated Wear-Resistant Onboard Keypad:
Drive is Unlocked by Entering a PIN on Keypad and not the Host Computer’s Keyboard. Until the device is unlocked via its keypad, it remains invisible to the host. The embedded keypad circumvents all hardware and software key logging attempts to capture passwords by excluding the host system from the authentication process. Polymer-coated buttons are wear-resistant and designed to not reveal most commonly used buttons.
Admin Forced Enrollment:
Unique PIN Must be Established at Time of Setup. Eliminates Factory Default PIN Vulnerability. Out of the box, there are no factory pre-set default PINs. In order to set up and use the drive, a unique PIN must first be established by the Admin, from within the Admin mode.
User Forced Enrollment:
Admin Can Program Device at Setup Requiring User to Establish a Unique PIN. Once a device is configured by the Admin, it can then be deployed in a state of USER FORCED ENROLLMENT in which the User must first establish his or her own User PIN before the encrypted storage drive can be accessed or used.
Data Recovery PINs:
Creates State of User Forced Enrollment that Restores Access to Drive. In the event that a User PIN is forgotten, Recovery PINs can be programmed into the device to permit access to the drive’s data by creating a new state of User Forced Enrollment while the Admin PIN and the drive’s data remain intact. Once a replacement User PIN is generated, access to the drive is restored for the user.
Two Read-Only Modes:
Global, All Access Settings Controlled by Admin, and User Mode Controlling Individual Settings. Employed in situations that require the encrypted storage drive’s contents to be kept intact and unaltered for later examination. The two Read-Only modes are as follows: Universal Read Only is set by the admin from within the admin mode and can’t be modified or disabled by anyone but the admin. The second read-only mode can be set and disabled by a user but can also be enabled or disabled by the admin as well.
Programmable PIN Lengths:
Admin Designates Minimum and Maximum PIN Lengths (between 6 and 16 Characters). The longer the PIN, the more secure the data on the device becomes. For example, the odds of brute force success go from 1/10,000,000 with a 7-digit PIN to 1/100,000,000 with an 8 digit PIN. In cases where the User sets up his or her own PIN from User Forced Enrollment, the Admin can set an enhanced User password length requirement as part of the overall security policy.
Select the Number of Consecutive Invalid PIN Attempts Permitted (4-20) Before Crypto-Erase. All Aegis Secure Drives are unlocked (authenticated) by entering a PIN on their own onboard keypad. Since the PIN is not entered using the host computer’s keyboard, they are not vulnerable to software or hardware-based key-loggers or software-based brute force attacks. However, if the device comes under a physical brute force attack, your data is protected with a programmable “Brute Force Hack Defense Mechanism” which, if the programmed number (between 4 and 20) of consecutive incorrect password entries has been attempted, the device will delete its own encryption key and destroy the ability to decrypt its stored data.
Unattended Auto Lock:
Programmable Length of Time of Inactivity Permitted Before Drive Locks Itself. All Aegis Secure Drives will automatically lock once disconnected from a computer’s USB port or the power to that USB port is interrupted, or after a pre-programmed period of inactivity.
Allows Drive to Remain Unlocked During USB Port Re Enumeration (Virtual Machine, Remote Boot). Designated for specific cases in which the key needs to remain unlocked through USB port re-enumeration such as during reboot, or passing through a virtual machine.
Drive Reset Feature:
All Apricorn Devices can be Reset and Redeployed Over and Over. Drive reset clears both the User and Admin PINs, destroys the data, creates a new randomly generated encryption key and allows the drive to be reused repeatedly, with an infinite number of randomly generated encryption keys, allowing the admn and or user to reset the encrypted storage drive as often as is needed.
When Programmed and Activated, Performs a Crypto-Erase and Becomes New Access PIN. The last line of defense for data security when the device’s physical security is at risk. The Self-Destruct PIN defends against these physically compromising situations by erasing the key’s contents, leaving it in normal working order appearing yet to be deployed.
LED Key Press Indicator:
Visually Confirms Successful Button Presses via the Device’s LEDs.