BeCrypt Trusted Client is a bootable trusted environment that resides on a USB device and provides functionality customized to your organization's requirements. The device is fully encrypted using the AES algorithm.

To use Trusted Client, the user inserts the USB device into a temporary host computer and switches the computer on. Trusted Client authenticates him or her by username and password (or, optionally, by CAC card and PIN) before booting the operating system and launching the preconfigured environment. The trusted environment then runs as a self-contained platform on its temporary host, optionally connecting to pre-defined remote servers using the host's connection. When the user has completed the session, he or she simply shuts down Trusted Client. No record of the session is left on the temporary host computer.

Trusted Client Functionality. The precise functionality of Trusted Client is customized to an organization's requirements, but always includes a web browser and may include an email client, VPN access, and an office suite.

Trusted Client includes:

• optional dual-factor authentication using CAC cards optional centralized management via BeCrypt Protect Manager, permitting the
• remote decommissioning of individual Trusted Client devices
• improved support for wired and wireless networks
• wider range of optional applications
• optional non-secured partition.