The CryptX2 is a hardware encrypted storage device. If you have data you want to secure and you want the highest level of security you can get, you want the CryptX2.
- Open source - verified secure, no backdoors, upgradeable
- Upgradeable - add new features, or customize to your needs
- Micro SD cards - easily upgradeable, and inexpensive storage
- Highly Secure - AES 256bit hardware encrypted
Watch the video for more details and a demonstration of the CryptX2 in action.
The CryptX2 video gives a great overview of the basic features of the CryptX2, so here we will give some of the more specific information you may want after seeing the video.
While the CryptX2 is extremely secure, it is also simple to use. Each firmware version will have its own specific directions included with it, however the default firmware directions are listed below for the most common features. For a complete user manual for the default firmware click here.
To reduce the size of the indiegogo page we have limited the directions posted here.
For a complete user manual for the default firmware click here.
The Device ID feature will help you make sure the device is yours and that it hasn't been switched with another one.
(This feature is not required to unlock the device, you can skip it if you choose)
1. Press and hold the OK and #4 buttons for 2 seconds, the LED will light up blue.
2. Enter your device id password (not your unlock password) then press the OK button.
The CryptX2 will flash the series of LEDs that you previously programed into the device. If the LED sequence matches what you programmed into it, then you know the device is yours and it is safe to use.
(entering the wrong Device ID password will show a random LED sequence)
**Unlock the CryptX2**
1. Press and hold the OK and #2 buttons for 2 seconds, the Mode LED will light up blue.
2. Enter your password (4-128 button presses) then press the OK button. The CryptX2 will show green LEDs if the device is unlocked correctly, or red LEDs if you entered the wrong passkey. (warning, entering the wrong passkey 10 times will cause permanent loss of your data and require you to reformat the CryptX2)
You have 15 seconds to plug the CryptX2 into the computer or it will auto lock. The CryptX2 will show up on your computer as 2 regular USB Mass Storage drives, you can use them the same as any other flash drive or hard drive.
The device will automatically lock when removed from the USB port or if the OK button is pressed.
**Read Only Mode**
You can enable/disable read only mode to prevent writing to the sd cards by pressing the 1 or 2 (for sd card 1 or 2) button after the device is unlocked. When the device is in read only mode the SD1 or SD2 LED will be red. The led will be green when in normal (read/write) mode.
The panic mode is used to destroy your data when you are forced to give your
password by an attacker.
The panic password is a different password than your normal unlock password or Device ID password. The panic password is entered in the same way as a normal unlocking of the CryptX2, except when you enter this panic password the CryptX2 will delete the current salt and generate a new one, so your current data will be lost and the device will appear to be freshly formatted. There is no indication that you have used a panic password VS your normal password. The data you previously had on the CryptX2 will be permanently lost, and the device will continue to work with the panic password as a normal CryptX2 so your attacker will not know for sure if the panic mode was used or if the CryptX2 just hasn't been used with the sd cards loaded in the CryptX2 yet.
What We Need & What You GetWe have parts for 100 CryptX2 beta units here, many of which have been assembled and tested. And while the design is good and works well, we are making some upgrades and design improvements for the final version. The most important change is going from the AT32UC3A464S microcontroller which offers 64k of program flash to the AT32UC3A3256S which offers 256k. While the 64k is way more than enough for the CryptX2 in its current use, however since we are developing this to be open source and the firmware is upgradeable we want to make sure we offer the greatest flexibility as possible. To make this change we have updated the schematic. We are currently redesigning the pcb to fit the new, slightly larger microcontroller. By the time you are reading this we will have the new pcb's for building the final prototypes before we order in bulk for the final production run for the indiegogo orders.
The firmware is functional, but not quite worthy of release for general use. We still need to do some optimization, clean up and commenting to make it easier to work with. We are also testing a the KDA (Key Derivation Algorithm) to find the best solution for this device in terms of speed and computational cost. The only real difficulty we are having with the firmware is perfecting the hidden data feature. This feature is an additional feature very similar to Truecrypt's hidden volume feature which unlocks an alternate set of data with a different password. Currently this feature is under development. The panic mode and normal encryption modes are working fine.
Some of our first alternate firmware versions are under development and will be launched at, or near the time of the CryptX2 release. The alternate versions currently in progress are:
Color Blind - This version will use alternate led display methods developed with color blind members of the community.
Custom Salt - This version will let you create the salt that is used. This will allow you to back up and duplicate CryptX2 devices that can decrypt the same data, however there is an added risk of knowing/saving this salt.
Raid0 - This version will use both sd cards combined in a Raid 0 (striped mode) to show as 1 device in your computer. This will provide faster speed.
Raid1 - This version will show only 1 drive in your computer, the additional sd card is used as a redundant backup in case of data failure on the primary sd card.
CDROM - This version will emulate a USB CDROM from any .ISO file named disk.iso in the root of the sd card on slot 1. The cd/dvd is bootable and is read only. Support for multiple .iso selection will be offered in the future.
We have a stretch goal of about $50k so we can work on development of a case for the CryptX2. We have been working on the 3d renderings of the case and have tested a few of the designs on the 3d printer at our local hackerspace (HeatSync Labs in Mesa, AZ). Once we perfect the design we plan to do plastic injection molding for the finished cases. The cases will be snap fit to allow you to open and close it to access the jtag, gpio and battery solder pads. The buttons will be flush with the top of the case so accidental key-presses will be minimized. The SD cards will stick slightly out of the side of the case so they can be removed, but will remain securely in the CryptX2 during use. We will also make all the files available for the 3d printing of the cases in case you want to make or modify your own cases and have access to a 3d printer. The costs for getting the molds made for plastic injection molding are very expensive, and the skill of the mold maker is important to be sure you end up with nice looking parts. Once the molds are made, it is only a few cents each to make the cases.