The Solution: SG FIPS

The SG FIPS has all of the necessary security features to bring the portability and convenience of USB flash drives back into the government space. It is designed to meet DoD requirements and provides superior data-at-rest protection for all data on the device without impacting user productivity or convenience.

First, the encryption requirement. All data being carried on the SG FIPS is encrypted. Government employees simply insert the secure flash device in a USB port and enter their personal identification number (PIN) or passphrase to encrypt or decrypt data. Second, the anti-virus requirement. The SG FIPS contains McAfee anti-malware and anti-virus software to ensure that any data transferred to and from the device is safe.

The SG FIPS provides the highest level of cryptography possible. The device is based on smart card technology and meets FIPS 140-2 Level 3 criteria, which represent the security requirements for cryptographic modules. Why is smart card technology critical for protecting mobile data? The encryption keys used for encrypting the data are generated and stored in the tamper-resistant smart card module. Gemalto uses the military grade advanced encryption standard (AES) 256 bit cipher block chaining (CBC) encryption for data encryption. Using smart card-based encryption token renders the device practically immune to software and/or hardware based attacks by unauthorized users.

Another benefit for government employees using the SG FIPS is its compatibility with the PIV card – an industry first. With this option, government agencies can require employees to use a PIV credential to access the SG FIPS. This is more convenient for the end user who only has to remember one PIN. It is also highly secure three-factor authentication, as it requires three factors – the PIV card, the SG FIPS, and the user’s PIN – to encrypt, decrypt, and access data.

The SG FIPS is zero-footprint, meaning it is self-contained and does not require any software installations or downloads. It is plug-and-play on multiple operating systems including Windows and Mac OS.

The device requires no user training, as the encryption or decryption of data is automatic. Users simply have to insert it and enter their passphrase; no mistakes can be made. If is lost or stolen, the token can be remotely blocked with Gemalto’s online service ,and unauthorized users can not get access to the data. For recovery, the SG FIPS uses PKI based stringent challenge response mechanism.

More details: The SG FIPS utilizes fast and reliable SLC USB secure flash memory and is designed for easy integration with endpoint security products. It is also easy for administrators to issue and manage. It is easy to register new devices, update software on the devices, deploy protected corporate applications, and remotely block a lost or stolen token and destroy its contents. Meeting the Military Standard 810-F environmental standard, a widely used standard for ruggedness, means that the SG FIPS can stand up to extreme temperatures, shock, dust, even full submersion in water.