Datasheet
Table Of Contents
DataTraveler Elite White Paper
1.2.1 Advanced Encryption Standard (AES-128)
The Advanced Encryption Standard was defined by the National Institute of Standards and
Technology (NIST) in 1997. Kingston has adopted the AES-128 standard for 128-bit
encryption/decryption. With this standard, if a key is used to encrypt data, the exact same key must be
used to decrypt the data. Without the same key, data would be a useless string of data.
1.2.2 DT Elite’s Real-Time, Hardware-Based Encryption
The AES encryption/decryption functions are performed directly in the DT Elite’s Flash memory
controller.
Flash
Memory
Storage
Host
Computer
Flash Memory
And USB
Controller
AES-128
Co-Processor
Kingston DataTraveler Elite
TravelerSafe+
Console
DT Elite Security Architecture
When the DT Elite is connected to a host computer, data and file management commands are
exchanged between the host computer and the DT Elite Flash memory and USB controller. When data
is written to a public zone in DT Elite, the data is written to the Flash memory storage without any
encryption. This data can be read on any host computer or other device.
To access the privacy zone, the user is required to use the TravelerSafe+ console and enter a valid
password. Once logged in, the host computer will be able to write and read data from the privacy zone.
When data is written to a privacy zone, it is encrypted by the AES Encryption and Decryption Co-
Processor in real-time, and then written to the Flash memory storage. Similarly for reads, the data is
decrypted real-time on the DT Elite drive and then sent to the host computer.
The DT Elite Encryption Process
James Smith
Ray Black
Unencrypted File
DT Elite
AES-128
Co-processor
XGF8%0^54#
H*^kMk)7%#.F
AES-128
Encrypted File
1101101010……..……1000010110 1101101010……..……1000010110
128-bit AES-128 “Key”
Rev. 0.98 Page 4