Military-grade FIPS 140-3 Level 3 (Pending) security to protect mobile data.

Military-grade FIPS 140-3 Level 3 (Pending) security to protect mobile data.

Kingston IronKey D500S
View larger

Kingston IronKey D500S Hardware-encrypted USB Flash Drive

FIPS 140-3 Level 3 (Pending) Certified, XTS-AES 256-bit Hardware Encrypted, Rugged Zinc Casing

The Kingston IronKey™ D500S/SM USB Flash drive features flagship military-grade security that makes IronKey the most trusted brand to safeguard classified information. It is FIPS 140-3 Level 3 (Pending) certified with new enhancements from NIST requiring secure microprocessor upgrades for stronger security and attack protections for government and military uses. Data is encrypted and decrypted on the D500S without any trace left on the host system. Along with hardware-based XTS-AES 256-bit encryption, it features a rugged zinc casing which is waterproof1, dustproof1, crush-resistant and special epoxy-filled to protect internal components from penetration attacks.

IronKey D500S is an essential pillar to meeting Data Loss Protection (DLP) best practices with the toughest military-grade security for compliance with data encryption laws and regulations such as GDPR, HIPAA, SOX and CCPA. D500S offers more features than any other drive in its class, making it a complete security solution for high-value data protection.

D500S self-tests upon bootup and detection of over-temperature or voltage conditions will lead to drive shutdown. For added peace of mind, D500S incorporates a digitally-signed firmware making it immune to BadUSB malware and Brute Force attacks. Brute Force password attack protection is always on to guard against password guessing and will ultimately crypto-erase the drive if invalid password retries are exceeded.

It offers a Multi-Password option to access data which supports up to three passwords: Admin, User, and One-Time Recovery. Admin can reset a User password and also enable a One-Time Recovery password to restore access if the User password is forgotten.

D500S supports traditional Complex password or Passphrase mode3. Traditional Complex mode allows for password from 8-16 characters using 3 out of 4 character sets. Passphrases can be from 10-128 characters long. A sentence with space characters, list of words or even lyrics to simplify remembering meaningful yet very secure passwords. FBI recommends multi-word passphrases of 15 or more characters as stronger yet easier to remember than complex passwords.5

D500S includes an industry-first Dual Hidden Partition option where Admin can create two custom-sized secure partitions for Admin and User, thereby allowing for a Hidden File Store that can be used to provision files to the User partition as needed. When using untrusted systems or sharing the drive, the Hidden File Stores keep their data secure and invisible unless properly accessed.

With a special key sequence, Admin can enter a Crypto-Erase password that will crypto-erase the drive, destroy the data forever and reset it to prevent unauthorized access.

To assist users with keyboard issues, all password entry screens include an Eye symbol that will display the password entered to reduce typos. A Virtual Keyboard is also available in English4 to shield password entry from keyloggers and screenloggers.

D500S also supports two levels of Read-Only (Write-Protect) Modes. Both Admin and User can set a session-based Read-Only mode to protect the drive from malware on untrusted systems. Admin can also set a Global Read-Only mode that sets the drive in Read-Only mode until reset.

It also delivers fast performance without compromising security. The drive includes a unique 8-digit serial number that is the same electronically as engraved on the casing, with a scannable bar code for drive deployment or auditing purposes.

D500S offers many customization options and is TAA/CMMC Compliant and Assembled in USA.

Managed Model

Kingston IronKey D500SM (M = Managed) drives require SafeConsole2. This allows central management of drive access and usage across a fleet of drives for larger enterprises or governments. An Optional-Managed version is also offered as a customization.

  • FIPS 140-3 Level 3 (Pending) Certified for flagship military-grade security
  • Multi-Password option with Complex/Passphrase modes
  • Industry-first Dual Hidden Partition option
  • Crypto-Erase Password for emergencies
  • Rugged zinc casing for penetration attack protection, Military Standards shock and vibration, IP67 waterproof/dustproof1
  • User-friendly interface
  • Fully customizable features and attributes
  • Available in a Managed model that requires SafeConsole

Military-Grade Hardware-Encrypted USB Drive

FIPS 140-3 Level 3 (Pending) certified XTS-AES 256-bit encryption with secure microprocessor upgrades for stronger security. Built-in protections against BadUSB and Brute Force attacks. New drive self-testing upon bootup, thermal and voltage protection to automatically shut down drives when they reach certain thresholds.

Multi-Password Option for Data Recovery

Enable Admin, User, and One-Time Recovery passwords. Admin can reset a User password and enable a One-Time Recovery password to restore User’s access to data if the User password is forgotten.

Complex or Passphrase Mode

Select between Complex or Passphrase mode. Passphrases can be complete sentences or multiple words that only you remember - from 10 to 128 characters long. An Eye symbol for all entered passwords helps reduce typos.

Industry-first Dual Hidden Partition Option

Admin can create two custom-sized Dual Hidden Partitions for Admin and User for a Hidden File Store to keep data secure and invisible unless properly accessed. Dual Hidden Partitions can provide additional security on untrusted systems or when drive sharing is required.

Crypto-Erase Password for Compromising Situations

The Crypto-Erase password will wipe encryption keys, delete all data forever and reset the drive.

Global and Session Read-Only (Write Protect) Modes

Both Admin and User can set a session-based Read-Only mode to protect the drive from malware on untrusted systems. Admin can also set a Global Read-Only mode that sets the drive in Read-Only mode until reset.

Rugged Casing Built to IronKey Toughest Standards

Zinc casing that is crush-resistant and is epoxy-filled for physical tamper-resistant security. MIL-STD-810F certified for mechanical shock, vibration and drop tests. IP67 certified for waterproof1 and dustproof1.

Unique 8-digit Serial Number and Scannable Barcode

Time saver, simply read or scan the barcode, when deploying, when it is returned as well as during any physical auditing.

Fully Customizable

Enable, disable, modify drive features and profile. Co-logo.