- The Aegis Padlock DT FIPS processes PINs on the device, not on the connected computer
- This drive functions where software-based encryption cannot, including embedded systems
- Epoxy coating and locked firmware prevent physical tampering and BadUSB attacks on the Padlock DT FIPS
Most companies assume that encrypting their sensitive data is enough, but encryption only matters if the keys and authentication methods stay out of attackers’ reach.
Software-based encryption tools leave those secrets exposed on the host computer, where keyloggers, screen scrapers, and remote access trojans can capture them with ease.
To help address this, Apricorn has expanded its Aegis Padlock DT FIPS line with a new 32TB model which removes the host system from the security equation entirely.
Article continues below
Encryption that never touches your computer
“Offline, encrypted storage plays a critical role in broader data protection and resilience strategies,” said Kurt Markley, Managing Director of Apricorn.
The Padlock DT FIPS performs all authentication directly on the device using an onboard keypad, meaning no PIN ever touches the connected computer.
Users type their code into the secure drive itself, and it handles all encryption and decryption internally through Apricorn’s proprietary AegisWare firmware.
It eliminates exposure to keyloggers, memory scrapers, and other endpoint-based attacks that plague software-based solutions.
This external hard drive secures data in real time as information is written, and both the PINs and the stored data remain encrypted while the drive sits idle.
The firmware is locked down to prevent any modifications, making the drive immune to malware attacks such as BadUSB that can reprogram ordinary USB drives.
What the device delivers for its price tag
The 32TB model costs a whopping $1,999.00, and it joins 12 other capacities ranging from the 2TB model, which costs $289.00.
This drive allows organizations to consolidate massive datasets onto a single device that can be completely isolated from network-based threats.
All internal components are protected from physical tampering with a layer of hardened epoxy.
It carries FIPS 140-2 Level 2 validation, certification number 4528 from NIST, confirming that it meets stringent government security standards.
It also offers hardware-based 256-bit AES XTS encryption, software-free setup and operation, and cross-platform compatibility with Windows, Linux, Mac, Android, and Chrome.
This drive works where software-based encryption cannot, including embedded systems, diagnostic machinery, and any powered USB device with file storage.
The Padlock DT FIPS data transfer runs over a USB 3.2 Gen 1 interface, which delivers up to 5Gbps and remains backwards compatible with USB 3.0, 2.0, and 1.1.
The drive includes an 8MB buffer and an average seek time of 12 milliseconds, and it can withstand shocks up to 70G while running and 250G when powered off.
There are some downsides
While the concept of removing the host computer from the security chain is technically sound, Apricorn’s solution addresses only one piece of a much larger puzzle.
A drive that stays offline is safe from remote attackers, but the moment someone connects it to a computer to read or write data, the system’s integrity becomes relevant again.
The keypad prevents PIN theft, but it does not prevent an attacker with physical access from simply taking the drive.
Organizations that buy this device will still need to manage who has access to it, where it is stored, and what computers it gets plugged into.
The hardware is secure, but the humans operating it remain the weakest link.
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds.