Thanks to the full disk hardware encryption according to the 256 bit AES in CBC mode and the two factor authentication, by smartcard and 8-digit PIN, the DIGITTRADE HIGH SECURITY HDD combines the benefits of mobile data media with highest security standards for data privacy.
The encrypted HDD offers with its features a lot of solutions for single users, companies and public authorities.
During transfer on the HDD, all data is stored in real-time by a 256 bit full disk encryption according to AES in CBC mode.
The Advanced Encryption Standard (AES) is a symmetrical cryptographic system, approved by USA’s National Security Agency for top secret information.
The DIGITTRADE HIGH SECURITY HDD works with a two-factor authentication:
Factor 1 (Having): verifies, if the user has a smartcard with the correct AES key.
Factor 2 (Knowing): verifies, if the user knows the correct 8-digit PIN and consequently is authorized to use this smartcard.
Only after successful authentication the AES key used for encryption will be transferred to the encryption chip set and the user will have access to the data.
3. Administration of the cryptographic key
The user is able to create, change and destroy the cryptographic key and has the possibility to copy the key to another smartcard and to initialize a new smartcard to the DIGITTRADE HS256S.
The cryptographic key which is needed to de- and encrypt, is created and saved encrypted on the smartcard. In that case the cryptographic key is physically separated from the stored data that’s’ why there is no possibility to read it out or to decrypt the stored data. Only the input of the correct PIN will transfer the key to the encryption module and enables the de- and encryption.As a result of the external storage of the cryptographic key there are a variety of application possibilities.
4. Smart card
Serially the HS256S is delivered with two java based smart cards. The Oberthur Cosmo 64 v5.4 smart card is certified with FIPS 140-2 Level 3 and enables creation, copying, changing and destroying of the used cryptographic key. The administration of the key works with the DIGITTRADE HS256S applet.
Any try of manipulation will terminate the smart card immediately.
Optionally, two java based smart cards, NXP PSCD081 J3A081 JCOP v2.4.1 R3 (BSI-DSZ-CC-0675-2011) are available. These smart cards are equal to Oberthur Cosmo 64 v5.4 but are in addition certified by the BSI (Federal Institute of Information Technology) with EAL5. It costs an extra charge of 30,00 EUR for a HS256S with two NXP smart cards.
5. Implemented HDD
The implemented 2.5” SATA HDD makes the mobile data safe small and handy. Thanks to data transfer and power supply using USB or FireWire and the hardware encryption it is possible to use this storage device independent of an operating system or platform.
6. Supported Operating Systems
The HDDs are bootable and independent of any operating system. This allows the users not only to store files and programs on the HDD, but also programs and complete operating systems.