IronKey USB Device Meets Rigorous Security Standard for Government and Large Enterprises
Los Altos, Calif., April 14, 2008 - IronKey Inc., maker of the world’s most secure flash drive, announced today that the IronKey secure USB device has gained full FIPS 140-2 Level 2 Security Validation, demonstrating that the IronKey meets the secure design and implementation criteria for use by U.S. and Canadian Governments. IronKey received a FIPS product-level validation that covers security features of the entire device. This is a more comprehensive validation than the typical component-level validation which only covers the cryptographic module.
FIPS 140-2 validation is the benchmark for security within government departments and agencies. Government purchasing agents must purchase products validated for FIPS 140-2 in preference to non-validated products. To achieve validation, the IronKey underwent stringent testing by an accredited independent lab, earning the Federal Information Processing Standards (FIPS) 140-2 Level 2 certificate number 938 from the National Institute of Standards and Technology (NIST) and the Canadian Communication Security Establishment (CSE).
FIPS 140-2 Level 2 validation for the IronKey means customers can be assured that cryptographic algorithms, physical security, authentication, roles, interfaces, services, key management, and self-testing within the device meet government requirements. FIPS certification also benefits IronKey resellers focused on the government market, enabling them to deliver products that have been fully approved for use in these environments.
“In order to continuously protect our customers’ data and their systems, it is imperative that we meet and exceed industry standards for the highest levels of security and data protection,” said John Jefferies, vice president of product marketing at IronKey. “We are serious about providing the world’s most secure flash drives and have built the IronKey with that philosophy from the beginning. This FIPS validation proves that IronKey devices deliver very high levels of protection and demonstrates that we meet the requirements of our Federal customers.”
IronKey brings unprecedented mobile data security to enterprise and government organizations. Its combination of security applications and services along with hardware-based encryption deliver unmatched security for its USB drives, and protection of the data stored on them.
This validation is the most recent addition to IronKey’s list of standards and certifications which include:
FIPS 186-2 (certificate numbers 305 and 380) - demonstrating that IronKey’s algorithms and random number generator have correctly implemented RSA, AES, SHA-1 and SHA-256 standards for digital signature generation and verification.
FIPS 197 (certificate numbers 655 and 689) - certifying IronKey’s correct implementation of the AES algorithm and its various modes.
