Military-grade FIPS 140-3 Level 3 (Pending) security to protect mobile data.

Kingston IronKey D500S Hardware-encrypted USB Flash Drive

FIPS 140-3 Level 3 (Pending) Certified, XTS-AES 256-bit Hardware Encrypted, Rugged Zinc Casing

The Kingston IronKey™ D500S/SM USB Flash drive features flagship military-grade security that makes IronKey the most trusted brand to safeguard classified information. It is FIPS 140-3 Level 3 (Pending) certified with new enhancements from NIST requiring secure microprocessor upgrades for stronger security and attack protections for government and military uses. Data is encrypted and decrypted on the D500S without any trace left on the host system. Along with hardware-based XTS-AES 256-bit encryption, it features a rugged zinc casing which is waterproof¹, dustproof¹, crush-resistant and special epoxy-filled to protect internal components from penetration attacks.

IronKey D500S is an essential pillar to meeting Data Loss Protection (DLP) best practices with the toughest military-grade security for compliance with data encryption laws and regulations such as GDPR, HIPAA, SOX and CCPA. D500S offers more features than any other drive in its class, making it a complete security solution for high-value data protection.

D500S self-tests upon bootup and detection of over-temperature or voltage conditions will lead to drive shutdown. For added peace of mind, D500S incorporates a digitally-signed firmware making it immune to BadUSB malware and Brute Force attacks. Brute Force password attack protection is always on to guard against password guessing and will ultimately crypto-erase the drive if invalid password retries are exceeded.

It offers a Multi-Password option to access data which supports up to three passwords: Admin, User, and One-Time Recovery. Admin can reset a User password and also enable a One-Time Recovery password to restore access if the User password is forgotten.

D500S supports traditional Complex password or Passphrase mode³. Traditional Complex mode allows for password from 8-16 characters using 3 out of 4 character sets. Passphrases can be from 10-128 characters long. A sentence with space characters, list of words or even lyrics to simplify remembering meaningful yet very secure passwords. FBI recommends multi-word passphrases of 15 or more characters as stronger yet easier to remember than complex passwords.⁵

D500S includes an industry-first Dual Hidden Partition option where Admin can create two custom-sized secure partitions for Admin and User, thereby allowing for a Hidden File Store that can be used to provision files to the User partition as needed. When using untrusted systems or sharing the drive, the Hidden File Stores keep their data secure and invisible unless properly accessed.

With a special key sequence, Admin can enter a Crypto-Erase password that will crypto-erase the drive, destroy the data forever and reset it to prevent unauthorized access.

To assist users with keyboard issues, all password entry screens include an Eye symbol that will display the password entered to reduce typos. A Virtual Keyboard is also available in English⁴ to shield password entry from keyloggers and screenloggers.

D500S also supports two levels of Read-Only (Write-Protect) Modes. Both Admin and User can set a session-based Read-Only mode to protect the drive from malware on untrusted systems. Admin can also set a Global Read-Only mode that sets the drive in Read-Only mode until reset.

It also delivers fast performance without compromising security. The drive includes a unique 8-digit serial number that is the same electronically as engraved on the casing, with a scannable bar code for drive deployment or auditing purposes.

D500S offers many customization options and is TAA/CMMC Compliant and Assembled in USA.

Kingston IronKey D500SM (M = Managed) drives require SafeConsole². This allows central management of drive access and usage across a fleet of drives for larger enterprises or governments. An Optional-Managed version is also offered as a customization.

• FIPS 140-3 Level 3 (Pending) Certified for flagship military-grade security
• Multi-Password option with Complex/Passphrase modes
• Industry-first Dual Hidden Partition option
• Crypto-Erase Password for emergencies
• Rugged zinc casing for penetration attack protection, Military Standards shock and vibration, IP67 waterproof/dustproof¹
• User-friendly interface
• Fully customizable features and attributes
• Available in a Managed model that requires SafeConsole