HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 36 guests online
 
Advertisement

You are here: Home arrow Columnsarrow Murrayarrow [Article]-Review: Pen Tester Sets Sights on the IronKey
EH-Net
May 22, 2013, 03:02:21 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: [Article]-Review: Pen Tester Sets Sights on the IronKey  (Read 61324 times)
0 Members and 1 Guest are viewing this topic.
don
Editor-In-Chief
Administrator
Hero Member
*****
Offline Offline

Posts: 4165


Editor-In-Chief


View Profile WWW
« on: June 11, 2009, 09:12:33 PM »
There's been a lot of chatter about this device in our forums over the last year. Take a look at what Mike thinks. Is it yet another in a long line of inadequate hardware devices? Take a look.

Permanent link: [Article]-Review: Pen Tester Sets Sites on the IronKey

Quote




After more than 10 years in the information security industry and a significant amount of time running a lab that tests products, I’m a pretty difficult guy to impress with technology.  And I’m NEVER nice to vendors.  They hate me.  As an example, when running said test lab, we once had a vendor give a client six-figures worth of software when the client told them that we’d be testing it before they purchased.  The client was happy, so we did our jobs even though we never tested a thing.

The only product I have ever had a net positive review of was the Safeboot disk encryption product, and even then, it was a case of being damned with faint praise.  I believe that the entire positive part of our assessment was: “the product works as advertised.”

So, when Don approached me to do a review of the IronKey Personal, I knew I was going to rip it apart.  I was going to write a scathing review of how terrible their product is and why these “gimmicky” pieces of hardware don’t work.  Because they usually don’t.


Let us know what you think and if you'd like to see other hardware reviews by Mr. Murray.

Don
« Last Edit: June 22, 2009, 11:15:54 AM by don » Logged
CISSP, MCSE, CSTA, Security+ SME
former33t
Full Member
***
Offline Offline

Posts: 226


View Profile
« Reply #1 on: June 11, 2009, 09:23:47 PM »
I'm impressed (both with the review and the product).  If Mr. Murray is willing to do more reviews, I'd be interested to read them.
Logged
Certifications: CREA, MCSE: Security, CCNA, Security+, other junk
UNIX
Hero Member
*****
Offline Offline

Posts: 1235


View Profile
« Reply #2 on: June 12, 2009, 12:19:48 AM »
I have not read it yet but I would like to know if you bought it yourself or if it was supplied by IronKey?
Logged
BillV
Hero Member
*****
Offline Offline

Posts: 1892


View Profile WWW
« Reply #3 on: June 12, 2009, 06:58:11 AM »
Nice review and a good, quick read. Enjoyed it. Also good to see that the IronKey stood up against the tests (especially the washing machine test). Might have to look into one of these. Thanks.

BillV
Logged
recursivenickname
Newbie
*
Offline Offline

Posts: 7


View Profile
« Reply #4 on: June 12, 2009, 07:47:54 AM »
Interesting review, and it's good to know that the Ironkey stands up well to attacks.  I'm curious, though, about the password recovery system, which is an online service.  Was any attempt made to recover the password?  What was the result? 

I don't know that I care how secure the hardware is, if the recovery password is as easy to get as Palin's yahoo mail account. 

I'm also morbidly curious to see how the device behaves after it "self-destructs"...
Logged
Andrew Waite
Hero Member
*****
Offline Offline

Posts: 928



View Profile WWW
« Reply #5 on: June 12, 2009, 09:07:45 AM »
Great review, I've always looked at the IronKey as a 'I can do that myself with free tools' and dismissed the cost. Think I definitely need a re-think.

Not sure about the washing-machine aspect as a selling point though, I've had a couple of freebies withstand the same punishment, albeit after I glued the casings back together (how my washing machine survives the things I leave in my pockets is beyond me)

Regarding the possibility of future reviews, I'll join the 'if you make it, they will come' school of thought. If you keep writing, I'll keep reading Cheesy
Logged
-- http://www.infosanity.co.uk
-- http://blog.infosanity.co.uk
johnscot
Guest
« Reply #6 on: June 12, 2009, 01:22:01 PM »
Hi all,

Ok you maybe wating to know is the IronKey really as good as they say it is, well I think it is I have 2 of them, the self destruct really works trust me I have done it to 4 of them (Don't ask all my fault) you would also have a good idea of how the IronKey works if you pop over to there forum as well at https://www.ironkey.com/forum yes that is HTTPS.

Also try looking on youtube as well for the http://www.youtube.com/watch?v=0zT1Gs4MGH8&feature=channel_page just a guess but some one said in this thread that they have free pen drive that stand up to the wash test check out that link first and see if they will stand up to that Wink

I really love my IronKey's and would tell any one to get one.
Logged
mjw
Newbie
*
Offline Offline

Posts: 2


View Profile
« Reply #7 on: June 12, 2009, 02:12:44 PM »
Sorry. Didn't find the article particularly useful. I get that you like the device, however you didn't detail the tests that you did or the results. Therefore, I'm left to wonder how the device actually performed. It's obvious that you're pleased with the results, but you didn't communicate why.
Logged
jason
Hero Member
*****
Offline Offline

Posts: 1012



View Profile WWW
« Reply #8 on: June 12, 2009, 02:19:43 PM »
Good review. I too would like to see more detail on the testing that you did.
Logged
dalepearson
Sr. Member
****
Offline Offline

Posts: 357


View Profile WWW
« Reply #9 on: June 12, 2009, 04:40:18 PM »
Good liitle review there, I have had my ironkey for over a year (helps I got it for free to review at the time) but I have always said its a cracking bit of kit.

Thanks for taking the time.
Logged
:: Subliminal Hacking :: / :: Security Active Blog ::
Andrew Waite
Hero Member
*****
Offline Offline

Posts: 928



View Profile WWW
« Reply #10 on: June 13, 2009, 03:51:20 AM »
Quote from: johnscot on June 12, 2009, 01:22:01 PM
Also try looking on youtube as well for the http://www.youtube.com/watch?v=0zT1Gs4MGH8&feature=channel_page just a guess but some one said in this thread that they have free pen drive that stand up to the wash test check out that link first and see if they will stand up to that Wink

Nope, don't know if my freebie would stand up to that. But there's not much chance of me getting my clothes laundered in the worlds most powerful washing machine either. So I'd say the point is moot.

Not saying the IronKey isn't a good device (I've never seen one to know), but so far my free/cheap drives have stood up to the punishment I've put them through in real life, I don't need more than that.The risk/protection versus cost doesn't add up for my requirements.

(Other than my geeky side going 'Oh Oh Shiney....' in a Homer-esque manner)
Logged
-- http://www.infosanity.co.uk
-- http://blog.infosanity.co.uk
UNIX
Hero Member
*****
Offline Offline

Posts: 1235


View Profile
« Reply #11 on: June 13, 2009, 11:22:44 AM »
Quote from: mjw on June 12, 2009, 02:12:44 PM
Sorry. Didn't find the article particularly useful. I get that you like the device, however you didn't detail the tests that you did or the results. Therefore, I'm left to wonder how the device actually performed. It's obvious that you're pleased with the results, but you didn't communicate why.
Quote from: jason on June 12, 2009, 02:19:43 PM
Good review. I too would like to see more detail on the testing that you did.

I read it and thought the same. However, as I got my own IronKey yesterday I will do a more in-depth review very soon after I have tested it for some time.
I will inform you when it is finished and pm you a link to my website where you can find it. Wink
Logged
UNIX
Hero Member
*****
Offline Offline

Posts: 1235


View Profile
« Reply #12 on: July 01, 2009, 01:32:11 AM »
As promised I made also a review on the IronKey and tried to give a little more details on the device itself.
It can be found on my website here.
If you have any more questions please feel free to ask.
Feedback is appreciated.
Logged
don
Editor-In-Chief
Administrator
Hero Member
*****
Offline Offline

Posts: 4165


Editor-In-Chief


View Profile WWW
« Reply #13 on: July 20, 2009, 03:33:32 PM »
Submitted to digg:

http://digg.com/security/Review_Pen_Tester_Sets_Sights_on_the_IronKey

Don
Logged
CISSP, MCSE, CSTA, Security+ SME
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.075 seconds with 24 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Free Business and Tech Magazines and eBooks

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.