Feeds
70%

SanDisk Cruzer Pro, Enterprise secure USB Flash drives

Pay a premium, get password protection

SANS - Survey on application security programs

Review Hands up who doesn't own a USB Flash drive, purchased or acquired as a freebie? No one? We're not surprised. These things are everywhere, leaving manufacturers keen to come up with novel ideas to sell us more. SanDisk's approach: push data security with a pair of password-protected products.

SanDisk Cruzer Pro and Enterprise

For the security minded, we have the Cruzer Professional and the Cruzer Enterprise. The Pro is the more basic of the two devices. Like the Enterprise drive, it protects data using 256-bit AES encryption, but whether you use it is left entirely to you.

Plugging in the drive for the first time is just like using any other USB Flash drive. Upon opening it up in Windows, the 'My Computer' window reveals you have the full 1GB available to you and to anyone else who gets their hands on it. Pre-installed is the user manual in PDF form - it's best to copy it off drive so you still have it after re-formatting - and the CruzerPro app.

Running CruzerPro allows you to set up a password-protected, encrypted private space just by dragging a slider to specify its capacity and, finally, entering a password. When you're done, click the 'Format' button and your safe-space is created. Double-clicking on the 'CruzerPro' icon in future allows you to open the private drive for use.

Copy over some data and it's encrypted. The protected partition has a shortcut to CruzerApp that you double-click to log out. You'll need to do this to re-access the public space on the drive - as you can only have one open at a time, each being assigned the same Windows drive letter. Personally, we'd like to have both available side by side, but that's a minor niggle.

Loading the Cruzer Pro on the Mac mounted only the public partition. The private space didn't show at all, not even as an inaccessible volume, in either Finder or Disk Utility.

Re-connecting the drive in Windows once again allows you to access the private partition by successfully entering the password. But here's a thing: the login window also has a Settings button that takes you to the formatting screen. Now, there's no way your data can be accessed from here, but what an unauthorised user can do is reset the password and the size of the private space.

SANS - Survey on application security programs

More from The Register

next story
Samsung Galaxy S5 fingerprint scanner hacked in just 4 DAYS
Sammy's newbie cooked slower than iPhone, also costs more to build
Leaked pics show EMBIGGENED iPhone 6 screen
Fat-fingered fanbois rejoice over Chinternet snaps
Oh no, Joe: WinPhone users already griping over 8.1 mega-update
Hang on. Which bit of Developer Preview don't you understand?
Microsoft lobs pre-release Windows Phone 8.1 at devs who dare
App makers can load it before anyone else, but if they do they're stuck with it
Rounded corners? Pah! Amazon's '3D phone has eye-tracking tech'
Now THAT'S what we call a proper new feature
Feast your PUNY eyes on highest resolution phone display EVER
Too much pixel dust for your strained eyeballs to handle
Zucker punched: Google gobbles Facebook-wooed Titan Aerospace
Up, up and away in my beautiful balloon flying broadband-bot
US mobile firms cave on kill switch, agree to install anti-theft code
Slow and kludgy rollout will protect corporate profits
Sony battery recall as VAIO goes out with a bang, not a whimper
The perils of having Panasonic as a partner
prev story

Whitepapers

Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.