Okay, I can run FF from the IronKey. To run FF, parts of the program are copied into the computer's main memory... to which the untrusted O/S has complete control. In fact, how can I be assured that the program is even copied into memory? The untrusted O/S may do something completely different.
``the very-difficult-to-crack encryption algorithms not only to protected the data stored on the device itself but also to scramble the data the drive sends back and forth over the host PC's USB connection should anyone be snooping it."
Erm.... what? TheReg seems to claim that the data is encrypted between the stick and the inside of the PC. But what does this give you? The operating system can still access everything!
Register
Skeptic
I fail to see how the thing can actually work.
Okay, I can run FF from the IronKey. To run FF, parts of the program are copied into the computer's main memory... to which the untrusted O/S has complete control. In fact, how can I be assured that the program is even copied into memory? The untrusted O/S may do something completely different.
``the very-difficult-to-crack encryption algorithms not only to protected the data stored on the device itself but also to scramble the data the drive sends back and forth over the host PC's USB connection should anyone be snooping it."
Erm.... what? TheReg seems to claim that the data is encrypted between the stick and the inside of the PC. But what does this give you? The operating system can still access everything!