Ironkey D500s - 128GB USB Stick - USB 3.2 - FIPS 140-3 Level 3 (pending) - Aes 256-bit Encrypted
ITCurry #: 2935H318 | Article #: IKD500S/128GB-
ScreenMemoryWeightProcessorHard DiskSSDScreenResolutionConnectivityMemoryCaseOSScreenTypeSpeed BlackSpeed ColourModelProcessor SpeedForm FactorInternal / ExternalPort CountUplink / mediaMounting
- View All Specs
Bundles
Related products
Product Information
FIPS 140-3 Level 3 Validated, XTS-AES 256-bit hardware-encrypted with trusted supply chain
Kingston IronKey™ D500S best-in-class USB flash drive features military-grade and CMMC-compliant security to safeguard classified data. It is FIPS 140-3 Level 3 Validated with new enhancements from NIST for stronger security and attack protections. It features a rugged zinc casing that is waterproof*, dustproof*, shock and vibration resistant**, crush resistant and epoxy filled. Designed and assembled by Kingston in California, D500S is the world’s first FIPS 140-3 Level 3 Validated drive with a TAA-compliant trusted supply chain.
The best-in-class Kingston IronKey™ D500S USB flash drive features flagship military-grade hardware-based XTS-AES 256-bit encryption that makes IronKey the most trusted brand to safeguard classified information with CMMC compliance. It is FIPS 140-3 Level 3 Validated with new enhancements from NIST requiring secure microprocessor upgrades for stronger security and attack protections for government and military uses. Governments and enterprises need to establish new drive policies with the latest security standard defined by NIST. Data is encrypted and decrypted on the D500S without any trace left on the host system. Designed and assembled by Kingston in California, D500S is the world’s first FIPS 140-3 Level 3 Validated drive with a TAA compliant trusted supply chain. All critical drive components were directly sourced by Kingston from TAA-compliant and trusted suppliers, and stocked in the secured Kingston Manufacturing Centre in California, USA to ensure drive assembly is done in tightly controlled, engineering-supervised processes.
It features a rugged zinc casing that is waterproof*, dustproof*, shock and vibration resistant to military standards**, crush resistant and filled with special epoxy to protect internal components from penetration attacks.
IronKey D500S is an essential pillar to meeting Data Loss Protection (DLP) best practices with the toughest military-grade security for compliance with data encryption laws and regulations such as CMMC, SOC2, NIS2, FISMA, GDPR, PIPEDA, HIPAA, HITECH, GLBA, SOX and CCPA, along with TAA. D500S offers more features than any other drive in its class, making it an industry-leading security solution for high-value, confidential data protection.
For added peace of mind, D500S incorporates digitally-signed firmware, making it immune to BadUSB malware. Brute force password attack protection is always on to guard against password guessing and will ultimately crypto-erase the drive if invalid password retries are exceeded.
It offers a multi-password option to access data, which supports up to three passwords: Admin, User and One-Time Recovery. Admin can reset a User password and also enable a One-Time Recovery password to restore access if the User password is forgotten.
D500S supports traditional Complex password or Passphrase mode***. Passphrases can be from 10–128 characters long. The FBI recommends multi-word passphrases of 15 or more characters as stronger yet easier to remember than complex passwords.****
D500S includes an industry-first Dual Hidden Partition option where Admin can create two custom-sized secure partitions for Admin and User, thereby allowing for a Hidden File Store that can be used to provision files to the User partition as needed. When using untrusted systems or sharing the drive, the Hidden File Stores keep their data secure and invisible unless properly accessed.
With a special key sequence, one can enter a Crypto-Erase password that will crypto-erase the drive, destroy the data forever and reset it to prevent unauthorised access in compromising situations. By destroying and regenerating its AES 256-bit encryption keys and erasing all data associated with previous keys, the drive ensures that CUI is completely unrecoverable, supporting organisations in achieving compliance with NIST SP 800-88 and NIST SP 800-171.
To assist users with keyboard issues, all password entry screens include an eye symbol that will display the password entered to reduce typos. A virtual keyboard is also available in English***** to shield password entry from keyloggers and screenloggers.
D500S also supports two levels of Read-Only (Write-Protect) modes. Both Admin and User can set a session-based Read-Only mode to protect the drive from malware on untrusted systems. Admin can also set a Global Read-Only mode that sets the drive in Read-Only mode until reset.
It also delivers fast dual-channel performance without compromising security. The drive includes a unique 8-digit serial number that is the same electronically as the number engraved on the casing, with a scannable bar code for drive deployment or auditing purposes.
D500S offers fully customisable features and functionality to meet your organisation's specific needs.
Military-grade hardware-encrypted USB drive
FIPS 140-3 Level 3 Validated, certificate #5029. XTS-AES 256-bit encryption with secure microprocessor upgrades for stronger security. Built-in protections against BadUSB, brute force attacks and physical tampering of internal components.
Trusted supply chain for government and enterprise compliance
All critical drive components were directly sourced by Kingston from trusted TAA-compliant suppliers, and stocked and assembled in the secure Kingston Manufacturing Centre in California. This ensures the drive is assembled in the USA in tightly controlled, engineering-supervised processes.
Multi-password option for data recovery
Enable Admin, User and One-Time Recovery passwords. Admin can reset a User password and enable a One-Time Recovery password to restore User’s access to data if the User password is forgotten.
Complex or Passphrase mode
Select between Complex or Passphrase mode. Passphrases can be complete sentences or multiple words that only you remember – from 10 to 128 characters long. An eye symbol for all entered passwords helps reduce typos.
Industry-first Dual Hidden Partition option
Admin can create two custom-sized Dual Hidden Partitions for Admin and User for a Hidden File Store to keep data secure and invisible unless properly accessed. Dual Hidden Partitions can provide additional security on untrusted systems or when drive sharing is required.
Crypto-erase password for compromising situations
The Crypto-Erase password will wipe encryption keys, delete all data forever and reset the drive.
Global and Session Read-Only (Write Protect) modes
Both Admin and User can set a session-based Read-Only mode to protect the drive from malware on untrusted systems. Admin can also set a Global Read-Only mode that sets the drive in Read-Only mode until reset.
Rugged casing built to the toughest IronKey standards
Zinc casing that is crush resistant and epoxy filled for physical tamper-resistant security. MIL-STD-810F-certified for mechanical shock, vibration and drop tests. IP67-certified for waterproof* and dustproof*.
Unique eight-digit serial number and barcode for asset tracking
To save time, simply read or scan the barcode when deploying, upon return or during any physical auditing.
Fully customisable
Enable, disable, modify drive features and profile. Co-logo.
| Performance | |
| Capacity | 128 GB |
| Device interface | USB Type-A |
| USB version | 3.2 Gen 1 (3.1 Gen 1) |
| Read speed | 260 MB/s |
| Write speed | 190 MB/s |
| Compatible operating systems | Windows 11, 10, macOS 12.x - 15.x, Linux Kernel 4.4+ |
| Design | |
| Form factor | Cap |
| Product colour | Black |
| Housing material | Zinc |
| Protection features | Crash proof, Dust resistant, Shock resistant, Vibration proof, Waterproof |
| LED indicators | Yes |
| Key ring | Yes |
| International Protection (IP) code | IP67 |
| Waterproof up to | 1.2 m |
| Certification | IP67 |
| Security | |
| Password protection | Yes |
| Security algorithms | 256-bit AES-XTS, FIPS 140-3 |
| Hardware encryption | Yes |
| Read-only function | Yes |
| Brute-force attack defence | Yes |
| Fast secure erase | Yes |
| User and admin roles | Yes |
| Management features | Password reset |
| Weight & dimensions | |
| Width | 20 mm |
| Depth | 79.5 mm |
| Height | 10 mm |
| Weight | 50 g |
| Packaging data | |
| Package width | 127 mm |
| Package depth | 25.4 mm |
| Package height | 69.8 mm |
| Package weight | 77.61 g |
| Packaging content | |
| Quantity per pack | 1 pc(s) |
| Operational conditions | |
| Operating temperature (T-T) | 0 - 50 øC |
| Storage temperature (T-T) | -20 - 85 øC |
| Sustainability | |
| Sustainability compliance | Yes |
| Other features | |
| Country of origin | China, Taiwan |
| Compliance certificates | Trade Agreements Act (TAA) |
| Logistics data | |
| Products per master (outer) case | 10 pc(s) |
| Master (outer) case width | 139.7 mm |
| Master (outer) case length | 165.1 mm |
| Master (outer) case height | 152.4 mm |
| Master (outer) case gross weight | 863.84 g |
| Warranty | |
| Base Warranty | Non Non |