Apricorn Aegis Secure Key 3NXC USB flash drive 256 GB USB Type-A 3.2 Gen 1 (3.1 Gen 1) Black

SKU
ASK3-NXC-256GB
$219.37
Out of stock
256GB, USB 3.2 Gen.1 Type-A Flash Drive, 5Gbps, AES 256 XTS, FIPS 140-2, Pin Authentication, 18.4x81x9.5mm, 22g
Built For Today's Remote Workforce
The first encrypted USB flash key to feature a C connector. Software-Free, 100% hardware-based 256-bit AES XTS encrypted, onboard keypad PIN authenticated, and high speed USB 3.2 (3.0) data transfer speeds. All Data is encrypted on the fly and the device’s PINs and Data remain encrypted while the drive is at rest. Completely cross-platform compatible and OS agnostic; thrives in Windows, Linux, Mac, Android, Chrome, embedded systems, and equipment possessing a powered USB port and storage file system. All internal componentry is protected from physical tampering with a layer of hardened epoxy, and locked-down firmware brings immunity to malware attacks such as BadUSB.

Featuring AegisWare
The heart and soul of every Apricorn Secure Device, AegisWare is our patent-protected firmware combined with the industry’s most advanced feature set.

FIPS 140-2 Level 3
Meets the U.S. government standards for information technology and computer security. NIST FIPS 140 is the cryptography standard program required by the US federal government for protection of sensitive data. The Aegis Secure Key’s FIPS 140-2 validation covers 11 areas of its cryptographic security system, including physical security, cryptographic key management and design integrity. Available in four levels, the Aegis Secure Key’s FIPS 140-2 Level 3 validation encompasses both the Aegis Secure Key’s physical tamper-resistant features as well as its identity-based authentication. Tested and validated by the National Institute of Standards and Technology (NIST) for use by the Federal governments of the USA, Canada and others, the Aegis Secure Key 3 is based on Apricorn’s FIPS 140-2 Level 3 validated encryption module as indicated by certificate #2834. The Secure Key’s security policy is located on the NIST site at the following link. The epoxy coated boundary includes all encryption functions and all Critical Security Parameters (CSPs) such as PIN storage, encryption key generation and storage, random number and seed generators, all firmware storage, and device storage. The FIPS module is a complete encryption system, and all CSPs never leave the boundary and are never shared with a host system.

Aegis Configurator Compatible
Windows-Based App that Quickly Sets Up Multiple Devices Simultaneously. Create custom profiles and mass configure multiple devices in a matter of seconds using the Aegis Configurator. To configure an expanded number of devices, use the Powered Aegis Configurator Hub bundle.

Separate Admin and User Mode
Admin (Device Configuration) Mode and User Access Mode. The Aegis Padlock supports one independent Admin and up to four separate User PINs. The Admin mode controls the universal programmable settings of the device and can only be accessed with the Admin PIN. The User mode is limited to basic external drive functions like read /write, unlock / lock, etc. The data on the drive can also be accessed with the admin PIN in the User mode.

Polymer-Coated Wear-Resistant Onboard Membrane Type Keypad
Drive is Unlocked by Entering a PIN on Keypad and not the Host Computer’s Keyboard. Until the keypad USB drive is unlocked via its onboard keypad, it remains invisible to the host. The embedded keypad circumvents all hardware and software key logging attempts to capture passwords by excluding the host system from the authentication process. Polymer-coated buttons are wear-resistant and designed to not reveal most commonly used buttons to unlock the hardware encrypted USB drive.

Admin Forced Enrollment
Unique PIN Must be Established at Time of Setup. Eliminates Factory Default PIN Vulnerability. Out of the box, there are no factory pre-set default PINs. In order to set up and use the drive, a unique PIN must first be established by the Admin, from within the Admin mode.

User Forced Enrollment
Creates State of User Forced Enrollment that Restores Access to Drive. In the event that a User PIN is forgotten, Recovery PINs can be programmed into the device to permit access to the drive’s data by creating a new state of User Forced Enrollment while the Admin PIN and the drive’s data remain intact. Once a replacement User PIN is generated, access to the drive is restored for the user.

Data Recovery PINs
Creates State of User Forced Enrollment that Restores Access to Drive. In the event that a User PIN is forgotten, Recovery PINs can be programmed into the device to permit access to the drive’s data by creating a new state of User Forced Enrollment while the Admin PIN and the drive’s data remain intact. Once a replacement User PIN is generated, access to the drive is restored for the user.

Two Read-Only Modes
Global, All Access Settings Controlled by Admin, and User Mode Controlling Individual Settings. Employed in situations that require the drive’s contents to be kept intact and unaltered for later examination. The two Read-Only modes are as follows: Universal Read Only is set by the admin from within the admin mode and can’t be modified or disabled by anyone but the admin. The second read-only mode can be set and disabled by a user but can also be enabled or disabled by the admin as well.

Programmable Pin Lengths
Admin Designates Minimum and Maximum PIN Lengths (between 6 and 16 Characters). The longer the PIN, the more secure the data on the device becomes. For example, the odds of brute force success go from 1/10,000,000 with a 7-digit PIN to 1/100,000,000 with an 8 digit PIN. In cases where the User sets up his or her own PIN from User Forced Enrollment, the Admin can set an enhanced User password length requirement as part of the overall security policy.

PIN Guard
Detects inadvertent button presses and puts the device back into sleep mode to prevent battery drainage and false brute force attempt tallies.

Fixed Disk or Removable Media
Can be Configured as Fixed Disk or Removable Media in Device Setup. Easily adapts to embedded equipment and OSs that will only recognize one or the other for removable storage. Windows, Mac, and Linux all deal with Mass Storage devices differently depending on whether they report themselves to the host as Removable Media or as Fixed Disks. Some applications or embedded systems may allow one type but not the other. Example: Windows 2 Go will work with devices that report as Fixed Disk but not as Removable Media. Alternately, there are USB boot drive creators and Windows imaging tools that will only work with Removable Media and not with Fixed Disk. It’s not uncommon for older equipment with built-in USB ports (such as those found in hospitals, manufacturing, and monitoring) to seek only Removable Media and ignore all Fixed Disk devices. U.S. Patent No. 10,338,840

Brute-Force Defense
Select the Number of Consecutive Invalid PIN Attempts Permitted (4-20) Before Crypto-Erase. All Aegis Secure Drives are unlocked (authenticated) by entering a PIN on their own onboard keypad. Since the PIN is not entered using the host computer’s keyboard, they are not vulnerable to software or hardware-based key-loggers or software-based brute force attacks. However, if the device comes under a physical brute force attack, your data is protected with a programmable “Brute Force Hack Defense Mechanism” which, if the programmed number (between 4 and 20) of consecutive incorrect password entries has been attempted, the hardware encrypted hard drive device will delete its own encryption key and destroy the ability to decrypt its stored data.

Unattended Auto Lock
Programmable Length of Time of Inactivity Permitted Before Drive Locks Itself. All Aegis Secure Drives will automatically lock once disconnected from a computer’s USB port or the power to that USB port is interrupted, or after a pre-programmed period of inactivity.

Lock Override
Allows Drive to Remain Unlocked During USB Port Re Enumeration (Virtual Machine, Remote Boot). Designated for specific cases in which the Aegis Padlock needs to remain unlocked through USB port re-enumeration such as during reboot, or passing through a virtual machine.

Drive Reset Features
All Apricorn Devices can be Reset and Redeployed Over and Over. Drive reset clears both the User and Admin PINs, destroys the data, creates a new randomly generated encryption key and allows the drive to be reused repeatedly, with an infinite number of randomly generated encryption keys, allowing the admin and or user to reset the drive as often as is needed.

Self-Destruct PIN
When Programmed and Activated, Performs a Crypto-Erase and Becomes New Access PIN. The last line of defense for data security when the device’s physical security is at risk. The Self-Destruct PIN defends against these physically compromising situations by erasing the drive’s contents, leaving it in normal working order appearing yet to be deployed.

LED Key Press Indicator
Visually Confirms Successful Button Presses via the Device’s LEDs.

IP68 Certification
Dust and Water Resistant Durable Aluminum Housing Protecting data goes well beyond encryption. Tough enough to go anywhere, the Aegis Secure Key’s resilient design makes it perfect for travel and field applications. With its rugged, extruded aluminum crush-resistant casing, the Aegis Secure Key is tamper evident and well-protected against physical damage.
SKU ASK3-NXC-256GB
EAN 0708326915120
Specification
Memory
Capacity256 GB
Form factorCap
Performance
Device interfaceUSB Type-A
USB version3.2 Gen 1 (3.1 Gen 1)
Capacity256 GB
Compatible operating systemsWindows®, Mac®, Linux, Android and Symbian systems, or any powered USB OS with a storage file system
PIN-secured accessYes
Keypad number of keys12
Keypad integratedYes
Password protectionYes
Security algorithms256-bit AES-XTS, FIPS 140-2
Hardware encryptionYes
Design
International Protection (IP) codeIP68
Product colourBlack
LED indicatorsYes
Form factorCap
Housing materialAluminum
Security
PIN-secured accessYes
Keypad number of keys12
Keypad integratedYes
Password protectionYes
Security algorithms256-bit AES-XTS, FIPS 140-2
Hardware encryptionYes
Lock-out functionYes
Read-only functionYes
User and admin rolesYes
Brute-force attack defenceYes
Management featuresFactory reset, Password reset
Weight & dimensions
Width0.724" (18.4 mm)
Weight0.776 oz (22 g)
Height0.374" (9.5 mm)
Depth3.19" (81 mm)
Technical details
USB version3.2 Gen 1 (3.1 Gen 1)
Product colourBlack
LED indicatorsYes
Compatible operating systemsWindows®, Mac®, Linux, Android and Symbian systems, or any powered USB OS with a storage file system
Housing materialAluminum
Strap mountYes
Sustainability complianceYes
Compliance certificatesCE, Federal Communications Commission (FCC)
Sustainability
Sustainability complianceYes
Other features
Compliance certificatesCE, Federal Communications Commission (FCC)
Compatible operating systemsWindows®, Mac®, Linux, Android and Symbian systems, or any powered USB OS with a storage file system
Packaging content
Strap mountYes
Packaging data
Strap mountYes
Manufacturer Apricorn
In Stock N