Product showcase: iStorage diskAshur PRO² SSD

HITBSecConf2019 - The 10the annual HITB Security Conference in The Netherlands - Trainings, Conference track and Haxpo exhibition. Register now.

The diskAshur PRO² SSD is an ultra-secure, PIN authenticated, portable USB 3.1 hard drive with real-time AES-XTS 256-bit hardware encryption. It doesn’t require any software – the keypad enables you to securely access the drive by entering a PIN code.

iStorage diskAshur PRO2 SSD

DiskAshur PRO² enforces an excellent PIN policy. The PIN must be at least 7 digits long and the maximum option is 15 digits. It cannot consist of all consecutive numbers (i.e., 1234567) or just one digit repeated (e.g., 55555555). There is also a “Shift” button on the keyboard that you can use to make combinations like Shift+number (e.g., Shift+1), which is a valid alternative to a single digit.

iStorage diskAshur PRO2 SSD

The disk offers protection against brute force attacks. After five consecutive incorrect PIN entries, the drive will freeze. To be able to get a further five PIN entry attempts, the drive has to be disconnected and reconnected to the USB port. If a further five (10 in total) consecutive incorrect PIN attempts are entered, the diskAshur PRO2 SSD will freeze again. To get a further and final five PIN attempts (15 in total), the “Shift” button must be pressed whilst inserting the USB cable into the USB port and then an iStorage preset PIN has to be entered.

On the fifteenth consecutive incorrect PIN entry, the diskAshur PRO² SSD assumes it is being attacked and will delete the encryption key and lock itself, causing all data stored on it to be lost forever.

iStorage diskAshur PRO2 SSD

The device uses EDGE (Enhanced Dual Generating Encryption) technology that provides advanced data security via a built-in FIPS PUB 197 validated AES-XTS 256-bit hardware encryption engine. The data encryption key is randomly generated by a Common Criteria EAL4+ ready Random Number Generator and protected by FIPS validated wrapping algorithms.

The security component employs physical protection mechanisms to protect itself from any external tampering, bypass laser attacks and fault injections and incorporates active-shield violation technology. Also, the secure microprocessor reacts to all forms of automated hacking attempts by entering the deadlock frozen state that can be exited only by turning the device’s power off and on again. It is also fully protected against BadUSB attacks.

The diskAshur PRO² SSD integrates a self-destruct mechanism which allows you to set a PIN which can be used to perform a crypto-erase on the entire drive.

iStorage diskAshur PRO2 SSD

The device comes in different sizes ranging from 128 GB up to 4 TB. The pricing starts from 189 GBP, while the most expensive version is 1949 GBP.

Features at a glance:

  • USB 3.1 Encrypted Portable SSD
  • Capacities up to 4TB
  • FIPS 140-2 Level 3 (US) – Certified
  • NCSC CPA (UK)
  • NLNCSA BSPA (NL) – Certified
  • NATO Restricted level – Certified
  • AES-XTS 256-bit hardware encryption – no software required
  • OS & Platform independent
  • Employs EDGE Technology