KanguruMicro Drive AES Frequently Asked Questions
Q1. Do I need to install anything on the PC to use the KanguruMicro Drive AES?
A1: Yes, there is a small setup file that needs to be installed one time onto any PC that you wish to use the AES Drive on.
Q2: When installing what is the option for "CHANGE AES KEY"?
A2: KanguruLock applies the user password to generate an AES key that in turn is used to encrypt all data on the drive. Entering the password unlocks the key and allows access to the data. When the password is changed, you have the option of keeping the same key as before (but will now work with the new password instead of old) or changing to a new key. Choosing a new AES key will force kangurulock to un-encrypt and re-encrypt all your data with the new key. This can take a few minutes depending on drive capacity. Both methods are completely secure and show no differences in functionality to the user. We typically recommend keeping the old AES key simply so that the user does not have to wait to un-encrypt/re-encrypt his or her data on the device.
Q3: Do I need Administrator rights to use this drive?
A3: Yes and no. Local administrator rights are required to install the setup file onto the PC. Once this is done, the flash drive can run under Local User mode. Many organizations also have software deployment tools, which can remotely install the necessary setup files throughout desktop clients as well, without having to setup on site.
Q4: Is the data kept on the flash drive?
A4: Yes, while the unit uses the processing power of the PC, all of the encrypted data resides on the flash drive.
Q5: Is the security key encrypted?
A5: Yes, it is encrypted with 256-bit AES Encryption.
Q6: Where does the security key reside?
A6: It resides on the flash drive in an encrypted section and is activated by password authentication.
Q7: Is any data left on the PC when I am done using the drive?
A7: No, the only files left on the machine are program files. There is NO actual usage data which is left behind. It is either stored in the encrypted area of the flash drive, or is “zeroed” (written over repeatedly by “0”s and “1”s to deleted any remnants while in a temporary cache). This process has been validated by the US Government testing laboratory and meets FIPS 140-2 specifications.
Q8: Do I have to do anything to encrypt the data?
A8: No, once you drag the data into the secure drive, it is 256-bit AES Encrypted.
Q9: What happens if I repeatedly enter an incorrect password?
A9: After seven consecutive incorrect attempts, the data in the secure drive will be erased as a security precaution. There is a warning before this is done and the user has a final chance to enter the correct password.
Q10: Is there any way for an administrator to have a Master Password to gain access to the drive in the case of an employee termination or audit requirement?
A10: Yes, this is done on a case-by-case basis and is available by contacting Kanguru Solutions.
Q11: Is there a minimum password requirement to ensure security?
A11: Yes, the password requires a minimum of eight (8) characters with at least 1 upper case and 1 lower case alpha character in the password sequence.
Q12: What are unique identifiers and how do these help my organization?
A12: Kanguru Solutions can provide customized unique identifiers “burned” into each drive so that each unit can be identified permanently. This is very powerful when used in conjunction with USB Device Control software so access can be authorized/denied by specific device ID (as well as allow audit trails to be created down to device level).
Q13: What drive does the “security drive” map to?
A13: Currently, the security drive maps to the “N” drive. Kanguru Solutions does have a module available, which will allow users to specify which drive letter will map as the Security Drive. If this is required, please contact Kanguru Technical Support.
Q14: Where can I get a list of files installed by the drive?
A14: Kanguru Solutions can provide a list of all installed files on case-by-case basis.