OS & platform independent: No software required. Platform independent compatible with: MS Windows, macOS, Linux, Android, Chrome, Thin Clients, Zero Clients, Embedded Systems, Citrix, VMware, DVRs, Medical Equipment, Printers, Scanners, CCTV. It just works on any device with a USB port!
Government validations: FIPS 140-2 Level 3, NCSC CPA, NLNCSA BSPA & NATO. Limited validations (in application Q3 2019) FIPS 140-2 Level 3, CESG CPA Foundation Grade; NATO Restricted & NLNCSA Departmental Confidential.
FIPS 140-2 Level 3 compliant Fraud resistant & evident design: all critical components are covered with a layer of super strong epoxy resin that is impossible to remove without permanently damaging the critical components. If it is "broken into", the fraud-proof design of the datAshur PRO2 will show clear traces that it has been tampered with.
Super fast USB 3.2 (Generation 1x1): compatible with older USB ports.
Automatic lock when idle: Adjustable lock when predetermined period of inactivity. datAshur Pro² is automatically locked when removed from the host computer or when the power to the USB port is turned off.
Can be set as Removable Media or Hard Disk: Depending on the OS environment and application scenario, the datAshur Pro² can be set as either Removable Media or as Hard Disk to meet user needs.
Read only (write protected) - Dual Mode: both the Admin and the user can set the datAshur Pro² as a 'read only' (write protected) device. When configured by the Admin, the device cannot be modified or rendered unusable by the user. This allows the Admin to provide a device in advance with content that the user can only read.
PIN registration for the user: the Admin can implement a restriction policy for the user PIN. This includes setting a minimum PIN code length and, where necessary, the mandatory entry of one or more 'Special Characters', 'Special Character' functions such as 'SHIFT () + digit'.
Crypto chip on the device: offers 100% real-time military gradation AES-XTS 256-bit Hardware Encryption with FIPS PUB 197 validated encryption algorithm.
Contains unique Common Criteria EAL4 + ready secure microprocessor: offers ultimate protection against hackers, signals and responds to fraud and breaches of functionalities such as:
Special hardware for protection against SPA / DPA / SEMA, DEMA attacks
Advanced protection against physical attacks such as Active Shield, Enhance Protection Object, CStack checker, Slope Detector and Parity Errors
Environmental Protection Systems protect against voltage monitor, frequency monitor, temperature monitor and light protection
Secure Memory Management / Access Protection
IP58 certified: dust and water resistant. Contains hard oxidized and robust, extruded aluminum protection cover.
Polymer, abrasion-resistant, on-board, alphanumeric keyboard encased: the datAshur Pro² is authenticated (unlocked) and all functions are performed with the on-board keyboard without the intervention of the host computer. The device is not vulnerable to key loggers or brute force attacks. The datAshur Pro² keyboard is covered with a layer of durable polymer for extra protection.
User and Admin PIN code authenticated: supports independent user and Admin PIN codes.
Bootable function: install an OS on the datAshur PRO2 and start up immediately.
Lock bypass mode: ideal in certain cases when the datAshur Pro² must remain locked via re-inventory of the USB port, such as during restart or when the device is being led by a virtual machine.
One-time User Recovery PIN code: adjustable by the Admin. Very useful if the user has forgotten the PIN code. Allows the user to unlock the device and set a new user PIN code.
Self-destruction Possibility: program the datAshur PRO2 in advance with a self-destruction PIN, which, when entered, deletes the encrypted encryption key and all PIN codes at once and allows all data to be permanently lost.
Whitelisting on networks: configured with a unique VID / PID and internal / external serial number with barcode, for easy integration with standard end-point management software (white-listing), to meet internal business requirements.
Immune to bad USB: both the USB Crypto Chip and the Secure Microprocessor contain digitally signed memory slot mechanisms.
Brute force anti-hack defense mechanism: if the user pin code is entered incorrectly 10 times in a row, the pin code will be removed and the disk can only be opened by entering the Admin PIN to reset the user pin code. (The admin can change this default setting of 10 incorrect PIN attempts to 1 to 9 PIN attempts, only for the relevant user). If the Admin PIN code is entered incorrectly 10 times in a row, all PIN codes and the encrypted encryption key will be lost forever.
Device restart option: deletes the encrypted encryption key, all PIN codes and permanently loses all data. The device can be switched on again, a new encrypted encryption key is then randomly generated. This process can be repeated as often as necessary.
Customer-specific options available: offers an in-house PIN configuration and laser engraving service where the datAshur Pro² sleeve or side of the module can be printed with your name, company name, logo, website / e-mail address and telephone number.
USB Flash Drive
AES-XTS 256-bit full disk hardware encryption
80mm x 20mm x 10,5mm (L x B x D)
USB 3.2 (Gen 1x1) SuperSpeed - backwards compatible 1/2
Standards and certifications:
FIPS 140-2 Level 3, NCSC CPA, NLNCSA BSPA & NATO Restricted validation