Thanks to Bret for being a good sport and writing up this fantastic review review of the IronKey he won from us a few months back. Thanks Bret!!!

“I have been using software based encryption on USB drives for several
years now (Truecrypt). So imagine my happiness when the IronKey burst
onto the scene. Now there is no longer any need for 3rd party encryption
software to secure what ever I need to carry with me on 1, 2, 4, and now
8GB limits.
Having received a 1GB unit a few months ago, I decided to test and
review the unit. Taking the IronKey out of the box, I was amazed at the
apparent sturdiness of the drive. Rock solid, is the phrase that comes
to mind.
The drive shipped with FireFox (FF) 2.0.0.12 installed on it.
Thankfully, it can be upgraded using the built in updater to the latest
FF2 Version (2.0.0.16). FF3 was listed as incompatible on Ironkey.com
(or was as of June 1st). Ontop of FF, there is the IronKey toolbar,
thats responsible for the input, store, and output of credentials.
Though said toolbar seems only 100% compatible with IE7.
Along with the toolbar, but specific to the FF installed on the unit, is
TOR. The FF/TOR feature sends your web data through a supposedly secure
TOR network. This network is maintained by IronKey and is, at least in
my opinion, better then having your data outputted to a hostile TOR
endpoint.
Besides FF, you are given a nice set of applications. One of which is a
built in password generator. You are also given a manager for stored
credentials. This manager ties into the toolbars for website credentials
and unfortunately, has no apparent functionally for non-website based
passwords/usernames.
After setup, you are allowed 10 wrong password entries, when attempting
to access the unit. At 9 you are warned that 1 more incorrect entry will
result in hard erase of all info stored on unit. Supposedly there is
little possibility of personal injury when this erase occurs. A ‘nuked’
IronKey flashes a different color on the LED to let you know its ‘nuked’.”

It sounds good to me!!!  Let us know what you’re using and if you’d go out and buy an IronKey!

Filed under: Privacy, Security, encryption | No Comments »

It’s been an absolutely fascinating week reading the output of Burton’s Catalyst Conference.  Thanks to Mark Dixon over at Sun for his great recap of the conference.  And to add to the chorus of voices, congratulations to Ian Glazer on his new job at Burton Group!

It’s Ian’s first post on the Burton Group blog that’s generated some rapid fire responses in the Identity Management blogosphere (which is a very good thing!).

Ian airs his concern over the statement from potential Identity Management customers, “I’m not ready to do roles, so I won’t attempt user provisioning.”

*sigh* (make the jump for my rant)

Read more »

Filed under: Identification, Provisioning, Security | 2 Comments »

Two recent Blog posts (by Kearns and JBohren) refer to a damning number - the high percentage of orphan accounts that exist in most applications and most large organizations. An “orphan” is an account that belongs to some person who’s left the organization (or never existed in the first place). It can’t be associated with a real person with a real need for access.

The usual concern here is for corporate assets: The “ex” employee can still be logging in and looking at data after he’s gone to work for your competitor.  We have many examples where automation has exposed and eliminated this back-door.

But what about you and your personal liability? If you leave a company, and your ID stays behind, and stays active, are you liable if it’s used for bad purposes? Personally, if I were doing something “prohibited” I’d much rather be using an ID belonging to a departed employee or contractor.

As a consultant, I deal with this issue a lot. Read more »

Filed under: Identification, Legal, Provisioning, Security | 1 Comment »

Just a bit of housekeeping on a lazy Sunday…  we’ve added the ability to subscribe to LiveBolt blog updates via email.  Just use the link in our header, next to the RSS feeds, or click here to subscribe.

And remember… only 2 days left in the IronKey Giveaway!!!  </shameless_plug>  Just click here for more info on the contest…  Thanks to all who have commented thus far!

Filed under: General | No Comments »

Folks,

Just a reminder — we’re giving away a FREE 1GB IronKey Personal USB thumbdrive ($80 value). Really a cool device — check out the geeky specs.

You need to enter before noon, on July 1st. Just make sure to read our “Personal Metadirectory for Passwords” article, and leave a comment there with your response to our questions for a chance to win!

And don’t forget to tell your friends!

Filed under: General, Uncategorized | No Comments »