Secure Facilities

Web Security & Network Infrastructure

IronKey is hosting its online services at state-of-the-art third-party data center facilities. Physical access to the IronKey systems requires multiple levels of authentication, including but not limited to hand geometry biometric readers, "man trap" entry, government-issued photo ID verifications and individual access credentials. Each data center facility is equipped with numerous surveillance cameras, motion detectors, and a sophisticated alarm system. The IronKey infrastructure resides in an secured cage. The entire facility is monitored by dedicated on-site security personnel on a 24x7 basis.

Secure Environments & Policies

Logical access to the IronKey environments is controlled by multiple layers of network technologies such as firewalls, routers, intrusion prevention systems and application security appliances. For additional protection, IronKey partitions its online services and backend applications into different network segments with independent security rules and policies.

Secure Communications & Data at Rest

When users access IronKey web sites and services, all information is exchanged over an encrypted channel. This is accomplished through Secure Socket Layer (SSL) and by utilizing Verisign Secure Site and Verisign Secure Site Pro certificates. To ensure additional security for its services, IronKey qualified for and is using Extended Validation SSL. The IronKey applications encrypt all sensitive data prior to transmitting it within the IronKey network and storing in databases.