Work insisting on encrypted USB

[Deleted member 651465]

Hey all,

Work (NHS) have mandated that all USB drives must be encrypted. All non-encrypted drives are now set to read-only mode.

Anyway.. they've sent a link to purchase alternative USB drives on a competitor website, but my question to you..

Given that this is just a USB drive with AES encryption, am I right in thinking any USB with hardware AES encryption will work?

I want to recommend an alternative that is several pound cheaper, but don't want egg on my face when the team order 12 and they don't work out of the box

 

[mejinks]

You can encrypt your usb stick using safend on your machine. I assume you use safend down there?

Anyway, you don't NEED to buy one, but it must be encrypted with safend according to NWIS.

 

[bledd]

Beware of Amazon reseller and ebay fakes. They often look the part but will be very flakey.

 

[Surveyor]

Perhaps you can check with whoever issued the mandate.

The system may be set up to only work with the make and model of USB drives that have been approved.

 

[Terrier_Jimlad]

For NHS use, it must be FIPS 140-2 approved/validated/accredited or your trust is not meeting the minimum IG requirements set out by HSCIC and DoH. We've used a wide range (I work in NHS IT too) of devices but the best bang for buck at the moment is the Kingston DataTraveler 4000. It's FIPS 140-2 and comes in a range of sizes, has a full metal body and I think our procurement guys found them at around £22 for the 4GB version. Not had a single one returned yet. Our nearest trust use SafeSticks and IronKeys but they be upwards of £50+ for 2-4GB models