Do you have a need to access your company computer from home or any other computer away from your office? You’re lucky if your company, like millions of corporations, runs Microsoft  Exchange because KeyComputing has just the device for you to get hold of your vital documents and emails in the most secure way possible.

It looks like an ordinary USB flash drive but it’s a deceptively simple, secure USB-based personal server. This little beauty includes a 32-bit microprocessor, a cryptographic engine, a database, a client for Microsoft® Exchange, flash-based storage, a Java application server, and a variety of applications for delivering data and security.

So what does it all mean?

It means that if you’re after a cheap, standard USB drive, read some of the other reviews here. If you need the ultimate in secure after-hours access to your office computer, read on.

Xkey requires no installed components on the client machine, no dedicated servers, and no configuration of existing servers.

First off I tried to plug it into one of the USB1.1 ports of my old laptop.

No joy as both ports are too closely spaced and even if given all the room the ports were too deeply recessed for this rather wide device.

You will get the Hi-Speed warning message if you plug into a USB 1.1 port of course but it still works. The USB2.0 ports on my Flybook are more accessible but one port only can be used unless you use the included extension cable with stand.

The Xkey password screen comes up after a few seconds.

If you don’t have Microsoft Exchange there is an Xkey demo mode.

The first thing the device does is disabling keylogging. Excellent feature if you don’t want someone else to spy on every keystroke you type.

Next it engages the engine that will cover your footsteps, erasing all traces of you having ever been on this particular PC.

The last thing is to create a new account.

When the DiskonKey from M-Systems came out it had a very functional and sleek design.

It was well-thought out.

I don’t think that same designer was involved when the Xkey was conceived.

The device is very slippery and very rounded, no edges to get a grip.

The cap fits rather tight and has a weak pull “ring”. I was afraid to actually pull on it at first! This clip was probably also thought of as a means to secure the device in one’s shirt pocket but that would be a bad idea. There is no quicker way to lose $450 and valuable data!

This device is aimed at the mobile professionals and a short USB cable would have been preferable to the special stand which only add bulk.

Coupled with the problems you may encounter in plugging the Xkey into deeply recessed ports, I would have given the design team a new brief.

However, that’s only the exterior.

The beauty is within.

The Xkey is created for a specific market segment: for employees who need remote access to corporate data in the most secure way possible.

Even if those employees were issued expensive notebook PCs, security is still an issue.

The Xkey will do away with the need for a corporate laptop IF another PC is available with internet access AND Microsoft Exchange.

I hadn’t heard of the term “day extenders” before in this context but if you are someone who takes work home every day or might get a call from the boss to do some last minute modifications for a proposal or sales report, you need the Xkey.

Personally, if I know I can have access to my data with just this device I’d be more than happy to leave my laptops behind on those occasions. And your IT department will be more than happy to fork out the moolah.  

You can click these images to enlarge them

According to Daniel Schreiber from KeyComputing: “Xkey 2.0 allows professionals to easily work on their Exchange messaging data - mail, calendar, contacts - and other corporate documents from any PC, for secure, productive work outside the office. Xkey does more than merely replicate users' Outlook data; it actually synchronizes directly with an Exchange server from any computer. The first solution of its kind, Xkey digs deep into the Exchange environment, making all the capabilities and features of Exchange available to users wherever they are - securely and effortlessly. Employees can now access Public Folders, schedule meetings, reserve conference rooms and interact with business associates while they are out of the office, improving overall company productivity. With a sophisticated suite of technologies including an embedded microprocessor, relational database, SSL engine, Java application server, suite of security applications and a cryptographic core, Xkey is the only solution that delivers the robust security features and support for the Exchange messaging environment that corporations require.”

That sums it up nicely.

It’s nothing short of amazing that this device contains all that.

Secure access is what corporations require and in those environments the Xkey is well worth the (small) investment. (The 256MB version has a MSRP of $300).

More info can be found here: www.key-computing.com.

Summary of Security Features

This Table summarizes the security threats to remote users, and Xkey’s solution to these threats.

Security Threat  & Xkey Solution

• Sensitive information left unintentionally on non-trusted PC.

• Xkey ensures no unintended traces are left behind.

• Keyloggers capture passwords and/or data.

• Xkey neutralizes all keyloggers.

• Weak authentication from unknown machine.

• Xkey is a token for 2-factor authentication.

• OWA’s vulnerability to open browser sessions and cached credentials.

• Removing Xkey ensures all Exchange sessions are terminated.

• Eavesdropping on communications.

• Xkey secures communications with SSL.

• Confidential information can be lost or stolen.

• Xkey is password protected, and all offline Exchange data is encrypted (128-bit AES).

General-purpose computing platform:

• ARM-7 processor, running at up to 50 MHz

• Embedded high-speed memories (ROM and RAM)

• Unique factory-set ID for every chip

• Read/write speed of 9/7 MB/sec (on USB 2.0 host)

• High performance SuperMAP™ cryptographic engine

• DES (56-bit key)

• 3DES (112-bit key)

• SHA-1

• RSA PKI

• Certified USB controller

• Native support: USB 1.1 and USB 2.0 full speed (up to 12 Mbit/sec)

• External chip support: USB 2.0 high speed (up to 480 Mbit/sec)

• Hardware flash controller and accelerator

• BCH Error Detection Code/Error Correction Code (EDC/ECC) algorithm can correct up to 4 errors per flash page

• Flash hardware acceleration module on chip

• Tamper protection circuitry

• Voltage glitch detection

• Passivation layer detection

• Physical access prevention to debug and test features

• SPA and DPA protection on cryptographic operations