Smart Guardian USB Token
30.11.2009
Elatec - distributor and first line partner of Gemalto for Eastern Europe is pleased to introduce the Smart Guardian USB token used for secure managing of sensitive mobile data. Smart Guardian token is a zero-footprint portable personal security device which supports multiple operating systems - Windows and Mac OS as well as PKCS#11-based smart card functionality. Available memory capacities are 2 and 4 GB.
End-users simply insert the Smart Guardian into a USB and authenticate by entering passphrase. The passphrase is validated by the smart card which unlocks the device and then sensitive files can be copied and encrypted on its secure volume by using familiar operations - drag/drop, copy/paste and "Save as". It can then be locked and safely removed by selecting the appropriate command from a contextual menu.
In case of multiple failed passphrase entries above a predetermined threshold, the device will lock to protect against brute force attacks and unauthorized access to the user keys. It can then be unlocked by an administrator (locally or remotely) using a PKI based challenge-response process.
Smart Guardian token is superior in comparence to PIN-protected USB flash drives, because the tamper-proof smart card module inside the Smart Guardian contains a high-performance microcontroller that generates cryptographic keys used to encrypt and decrypt data. The encryption key is secured by the tamper-proof smart card, preventing brute force attacks against the device.
Smart Guardian works with end-point security products from Microsoft, Lumension and other vendors to provide a comprehensive solution for data loss prevention.
PKCS#11 support offers the flexibility to implement other applications with the Smart Guardian (digital signature, secure remote access, connected one-time password authentication and other PKI-based services).
Smart Guardian is fully supported by token management portal hosted by Gemalto - Token Lifecycle Manager, which enables end-users and administrators to register new devices, update software on the devices, modify registration information, block a lost token and unblock a token.
