Apricorn240GB Aegis Secure Key FIPS 140-2 Level 3 Validated 256-bit Encryption USB 3.0 Flash Drive (ASK3-240GB)

An Aegis 2.0 is cheaper and better for data-only (reasons below)--but having one Aegis 3.0 is better if desiring high-security primary use with USB-mounted apps as explained below...The Aegis 3.0 Secure USB Drive has two minor glitches: 1. Frequent shut-downs--but not with desktops and not if using the free fixes (see below). 2. Feels hot in use. I do not know if this will affect longevity? But where the 3.0 speed is not important, the 2.0 is less costly and also seems more certain to last well.Either way, I like the security of a physically-encrypted PortableApps Firefox, backup programs and personal data (available free from the internet)--and no other USB stick is as secure. Might as well use it at home with the desktop as well as with the laptop when traveling--so you don't have to adjust when suddenly leaving. Then you are more secure from physical as well as viral induced failures.Pros.* For updating and 'save as' back-ups of blog pages--my Apricorn 3.0 takes only 10-15 seconds vs. 20-60 seconds with my old Apricorn 2.0. ALSO with Apricorn 3.0 there is no freeze-up of the PortableApps Firefox during the download. So the true comparison is 0 seconds vs. 30-60 seconds wait with each operation. ALSO you can use a 2.0 USB port! I cannot explain this--but with the Apricorn 3.0, I notice an equal efficiency increase whether using a 3.0 or a 2.0 port.* Small keychain size, so you can easily carry 2 for auto-backups with true security in case of loss or old-age failure. A third copy should stay at home. Of course, the two secondary back-ups can all be Apricorn 2.0.* Self-destruct sequence enables you to "wipe the server" instantly.Cons.* OneDrive/GoogleDrive/AmazonDrive might be safer and more convenient, especially for high-memory + low-security files such as home videos etc.* The case of the Apricorn Aegis can be lost unless you tape on a U eyelet for a lanyard. (See photo attached.) You can then get a necklace lanyard at any Walmart and thus make sure that the case sticks with the stick. Put your email and telephone number on the case--using the same clear tape with which you attach the eyelet. (For the eyelet, I use the tough plastic from a piece of old-fashioned antenna wire with the two wires cut off. The soft cord of the ID necklace can be looped onto the handle of a handbag or Samsonite and closed with the Apricorn stick either inside or outside--thus used without detaching--thus unlikely to be forgot.)* Any external memory has the potential for very-annoying frequent shut-downs. If this happens, there are two solutions.a) Save a folder of favorite photos on the USB drive--and use them as your "desktop background"--and activate a slide-show with a 10-second delay. This seems effective in preventing the USB drive from falling asleep. (If you must use your laptop on battery--then perhaps use small-KB low-quality graphics or line drawings and de-select "stop slideshow on battery power.")b) And/or... google for the free app KeepAliveHD--download and install to the computer--and set it to update a small text file on the external drive every 50 seconds. (Complete details below.)* If you are James Bond, Edward Snowdon or Hillary Clinton, you might need a much larger Apricorn USB memory. Otherwise, most of your non-personal junk can probably be saved on the standard OneDrive/GoogleDrive/AmazonDrive cloud memory. If you are a doctor, accountant or other professional with large amounts of high-security information, you probably can subscribe to a high-security cloud system--which will meet your legal requirements and will be a bit safer from being lost, stolen, cooked or smashed.In summary, I suggest the Apricorn USB system primarily for your very-own truly-personal passwords, credit cards and other data which you do not want identity thieves, China, Russia, Anonymous or the Bengazzi Committee to get ahold of.**********************************Detailed notes on KeepAlive HD--and other attempts to prevent repeat shut-downs of Aegis 3.0.~ So far, a 10-second "desktop slide show" seems equally effective in preventing shut-downs. (Right-click on any Windows desktop > Personalize > Desktop Background Slide Show > Picture Location: Browse and select a folder on your USB drive with several photos in it > Change Picture Every: select "30 seconds" > Save Changes. (For great free pics, find the "get more themes online" link, near the top of the main "personalize your desktop" page. After installing a theme, the Slide Show page shows the URL location of the resulting pics. Copy the ones you like best onto the USB drive. If you need to reduce power usage, then perhaps use any free image editor to reduce the physical size and the quality of the JPG image files so as to minimize the KB file sizes.)~ NoSleepHD-1.0 was not successful in keeping the Apricorn Aegis 3.0 awake on my HP Stream Notebook.~ KeepAliveHD works best for me when set to write every 50 seconds. I tried 100 seconds, so that less workload is being added--but then the Aegis 3.0 sometimes would shut down. If 50 seconds is not enough, try 30 seconds.~ Seems best not to select "auto-run at startup" under Settings. Auto-run can cause confusion by trying to write when the Aegis is offline.~ KeepAlive is started by clicking the check box,"Enable writing mode."Please note that:~ Both my desktop and my notebook use Windows 8.1~ The Aegis 2.0 has no problems "keeping awake" with my desktop or my notebook.~ The Aegis 3.0 has no problem with my desktop--it even keeps awake all nightduring screen saver mode (although not if the "sleep" mode kicks in).~ However, by itself, the Aegis 3.0 does not keep awake with my HP Stream notebook.~ The Aegis 3.0 also can be kept awake by playing YouTube videos on the USB-mounted Portable Firefox--which is not ideal--and quite unfeasible with a metered or 4g connection!~ Presumably, it would also work to leave a browser tab open to a small-download javascript "auto refresh"tutorial demo page which can be set for 30 seconds.~ Or, Windows itself can be programmed to open and close things repeatedly.~ Or, several free "macros" also can be programed to copy and repeat any actions--such as writing in and saving a text file--very similarly to KeepAliveHD.However, KeepAliveHD is obviously the best method while available.~ But, so far, the "slide show" solution works well and seems best.***************************************Note: the following are often suggested but DO NOT HELP for Aegis 3.0:HP Notebook > Control Panel\Hardware and Sound\Power Options\Edit Plan Settings> Change Plan Settings > Change Advanced Power Settings> + USB Settings > + USB Selective Suspend Setting> Plugged In: click "Enabled" and then select "Disabled" > OK[I suggest disabling this when "Plugged In," but not for when "On Battery."]> Control Panel\System and Security\System > Device Manager> Universal Serial Bus Controllers> Generic USB Hub > Power Management> De-select: "Allow the computer to turn off this device to save power" > OK[I do NOT recommend this de-selection and it does not help for Aegis 3.0.]> USB Root Hub > Power Management> De-select: "Allow the computer to turn off this device to save power" > OK[I do NOT recommend this de-selection and it does not help for Aegis 3.0.]~ I also tried using an inverse-Y USB cable such as are used for extra power.Power differences might explain why the Aegis shuts down with an 8.1 notebookbut not with an 8.1 desktop? However, the Y-cable did not help.

I served in the military and purchased one of these solely for the purpose of having the option to destroy the contents if something were to happen to me on deployment. I was pretty ticked off once I found out that all the self-destruct features in the manual did not actually work. I followed the manual instructions and the company's own youtube videos to set it up to no luck. Over a week since sending a tech support request to the company I still have gotten no response. I got so sick of it I returned it for a new one to see if it was defective. Sure enough the second one had the same problem. If they can't get this right, how can I trust any of their other claims?Update: Their tech support got back to me with new instructions and it appears that the ones provided pre-loaded on the drive were incorrect. The youtube tutorial provided directly by the company is also incorrect. They've been made aware of the issue and it is up to them to fix the issue. I would mark this 4 stars for security, build and size but I wanted to keep this message up for others who would likely run into the same problem.

Im no expert in security, but I know that "brute force hacking" is done by assaulting an encrypted disk with tens of thousands of potential passwords an hour - electronically. Even the highest profile cybersecurity/encrcryption case - when Apple would not try to reverse-engineer their encryption under FBI duress - a third party eventually developed a hardware hack that got around the 10-attempt limit before erasing so their computers could then brute force the electronic password without causing it to self-destruct. Again, the weakness was ultimately that an electronic system can be brute-forced with time, even if you try and weave a "doomsday device" around it.Although I keep nothing more dangerous on mine that personal documents, tax and banking records, I believe that this system is more secure than most commercially available systems that are also easy to use. Granted, I put my trusti in smart, defensive engineering of the interface. I hope someone from the company can read this and answer my questions. I am under the impression that the encryption system is completely harware based - that your passcode, entered via a keypad built into the stick, can only be entered by pressing the buttons, and that there is no harware hack that would allow a computer to electronically "press" the buttons and send the proper numeric symbol. But I am hopeful that a company that prides itself on secure products will have thought of that and made the keypad fairly hackproof. If the only way to to enter the password is the keypad and no amount of hacking can change a physical entry, it would take decades to for a robot to press all the possible combinations of buttons to come close to a brute force attack. And that even limiting the password to numbers only (although I think it can be up to 256 numbers long) means only 10 characters (bits) versus 256 characters (bits) on a full ASCII keyboard. By the way - like the iphone, you can also have the encrypted disk destroy itself after ten incorrect password attempts.So Im relying on their marketing and my hopes that the engineers thought of ways to hack-proof the interface, and that optimism is reflected in my rating. Overall, it has been simple to use. I have found only one computer, a MacPro running 10.,9.2, that has any conflict at all - it just ejects itself and returns to secure mode after a few minutes without use. On all other platforms, it works like any other USB drive - just as fast (using on the fly AES 256bit encrytion, if Im not mistaken) and as flexible. I've watched videos off it and edited videos using it to hold the source material, and it works perfectly. So if someone from the company reads these reviews, I would really appreciate having my questions about the engineering answered. Thanks in advance.

Lors de la réception (7 mai), la clé mémoire est très bien protégée, elle arrive dans une boite dont les dimensions sont plus grande que les autres clés : elle fait 17cm sur la longueur, 8.5cm sur la largeur et 3cm d'épaisseur. Elle dispose sur la tranche au sceau de sécurité qui indiquera si elle a été ouverte. À l'intérieur de la boite, on retrouve la clé et son capuchon métallique (qui englobera la totalité des touches) dans une mousse protectrice ainsi que le guide de démarrage rapide multi-langues (6 dont le français) et la licence d'utilisateur final en anglais. L'ensemble, clé plus capuchon mis fait 9.5cm*2.5cm*1.3cm.Pour avoir le manuel complet, il faut aller sur le site apricorn.com est sélectionner "Encrypted Flash Keys" (des disques durs portables externes sont aussi disponibles), il y a 4 types de clés différentes : la version 3.0 (celle-ci), la 3Z, la 3NX et la 3NXC (USB-C). Après l'avoir sélectionné, on remarque que cette version est disponible avec une capacité de 16 Go, 30 Go, 60 Go, 120 Go, 240 Go, 480 Go et 1 To puis on accède à la description, aux spécifications et aux manuels : on retrouve le guide de démarrage rapide multi-langues et la licence d'utilisateur final en anglais mais surtout la manuel complet disponible soit en anglais, en français, en espagnol, en allemand ou en italien.Cette clé dispose de la certification FIPS 140-2 qui est supérieure à la norme FIPS 197 d'autres clés trouvables sur le site. La FIPS 140-3 est fonctionnelle mais obtenir une validation prends du temps est ne sera effectif qu'en 2026.Les clés sont de niveau 3 sur 4, les 4 niveaux de sécurité de la 140-2 sont les suivants :- Niveau 1 - "Chiffrement" : Au moins un algorithme cryptographique ou une fonction de sécurité implémentée.- Niveau 2 - Rajoute la "Falsification" : une attaque laisse des traces visibles. L'attaque a peut-être réussi.- Niveau 3 - Rajoute la "Détection et la réponse du sabotage" : les tentatives de retrait ou de pénétration de l'enceinte solide auront une forte probabilité de causer de graves dommages au module (par exemple, puces recouvertes d'époxy), en d'autres termes le module ne fonctionnera pas. Mais aussi la "Protection améliorée des clés secrètes et privées" : les clés d'entrée et de sortie sont uniquement chiffrés ou dans une procédure de partage des connaissances. Mais encore l'"Authentification basée sur l'identité" : l'opérateur doit être identifié individuellement.- Niveau 4 - Rajoute la "Résistance au sabotage" : remise à zéro active et immédiate des clés secrètes en cas d'attaques. Mais aussi la "Protection contre les défaillances environnementales" : protection contre les attaques utilisant une tension ou une température extrême.Concernant les fonctions de la clé, elle est autonome car elle dispose d'une batterie rechargeable et de son propre clavier (donc pas de logiciel à installer qui peuvent être piraté).Il est impossible de s'en servir sans avoir enregistré un code et si ce code n'est pas tapé, le système d'exploitation ne détectera pas la clé.Ce code administrateur peut contenir entre 7 et 16 chiffres auquel on peut éventuellement rajouter un code utilisateur pour une autre personne qui n'aura pas accès aux fonctions administrateurs.Un nombre de faux codes peut être défini entre 2 et 10, au bout de par exemple 10 faux codes, le mode force brute sera activée et la clé verrouillée, il faudra alors suivre la procédure du manuel (appuyer simultanément sur le cadenas ouvert + touche 5 puis rentrer le code "last try" qui est indiqué dans ce manuel pour avoir 10 tentatives supplémentaires (soit 20 en tout), si les codes sont de nouveau faux, le contenu de la clé sera effacé. Dans le cas minimum de 2 codes faux configurés, cela donnera donc 2 + 2 en "last try" donc 4 tentatives en tout au minimum.Il est aussi possible de définir un code d’autodestruction des données de 7 chiffres minimum qui une fois tapé supprimera celles-ci. Je trouve dommage de ne pas pouvoir descendre en dessous de 7 pour être plus rapide.Un mode lecture seule est disponible (il sera impossible de créés ou modifier les documents présents) qui est utile sur des ordinateurs publics qui peuvent être infectés par un malware.Les 3 LED présentes permettent de voir l'état de la clé, il y a 13 états (voir page 6 du manuel) avec des LED variant de fixe, à clignotement rapide ou lent en passant par le changement d'état. En gros, la première rouge, la clé est verrouillée, la deuxième verte, la clé de déverrouillée et la troisième bleue, la clé est en mode administrateur pour configurer les diverses fonctions.Une fois qu'elle est déverrouillée (LED verte clignotante), vous avez 30 secondes pour la brancher à un port USB (LED verte fixe) sinon elle se reverrouillera.Je n'ai pas eu de problème lors du premier branchement, Windows l'a reconnue est installé les pilotes. À noter, elle contient les manuels en diverses langues dont le japonais, non présent sur le site.Je suis satisfait de ma clé, le capuchon par contre peut être dur à enlever une fois enfoncé à fond cela est dû au fait qu'elle a un indice de protection IP68, le premier chiffre de 6/6 indique qu'elle est totalement protégée contre les poussières et le deuxième de 8/9 indique qu'elle est submersible dans des conditions spécifiées en durée et en pression (immersion prolongée) au-delà de 1 m. Normalement, cela signifie que l'équipement est hermétiquement fermé, cependant, avec certains types de matériel, cela peut signifier que l'eau peut pénétrer, mais sans produire d'effets nuisibles. Protection contre la submersion durant 1 heure.Attention lors des périodes de chaleurs car elle chauffe beaucoup, de ce fait elle dispose d'un corps en métal qui dispose d’ailettes pour la dispersion de la chaleur. Mais une fois mes données modifiées, je ne me risque pas à la laisser brancher au port USB vu le prix.D'autres ayatollahs pro-sécuritaristes invoqueront les 2 fameux mots que sont le terrorisme et/ou la protection des enfants pour souiller encore une fois les libertés et vouloir l'interdire, je leurs répondrais que l'importation existe (déjà fait) et occupez-vous de vos enfants, sinon n'en faites pas. Car oui, même l’État français voudrait obliger la création de backdoors (portes dérobées) qui affaibliraient le chiffrement pour permettre l'accès aux appareils.

Good unit but buttons are small and hard to select. Unit gets pretty hot as well when plugged into USB port. Otherwise solid unit

If your serious about security and data safety. You NEED this product! I purchased this unit and I ama very happy camper! There’s no way you can ever go wrong with this product, no matter what size you need or want! You data pics whatever is SAFE!

Expensive but worth it

Solid product, very fast , appeal to my clients as they feel (with reason) theirs data is secure.Excellent product, I would recommend to anyone who need data protection.