Provide Company-Approved USB and External Drives
Use approved, encrypted USB flash drives in the workplace for employees.The following characteristics should be present on approved flash drives:Hardware-based encryption that has been tested and works with AES 256-bit encryption in XTS mode.
Hardware-based security outperforms software-based options in terms of portability and encryption.Software-based solutions are referred to as “removable encryption.” When an external or USB drive is formatted, it becomes a storage drive that is vulnerable to a breach and lacks encryption.Hardware-based encryption ought to never be removed.
All user storage should be encrypted, and there should be no unsecure storage.Equipment based secret key validation to restrict the quantity of sequential wrong secret key endeavors conceivable by locking gadgets when the most extreme number of wrong endeavors is reached.Brute Force attack protection is the name of this.Programming encoded drives don’t offer such insurances and can be effectively gone after by automatic secret phrase speculating programming.