Offerings :: Network Security


 

The first 3rd generation VPN solution

 

Sirrix is the first vendor worldwide to combine ultimate security with extreme simplicity within a VPN solution thus setting a landmark for a generation change in this technology. The Sirrix.TrustedVPN solution has been designed with 2 main goals in mind:

 

Ultimate security

Foolproof administration

 

The implementation is based upon an integrated security chip, which complies with the "Trusted Platform Module"(TPM) standard. This chip acts as security anchor, generates internally private/ public key pairs and stores the private key parts securely. The TPM-chip as security anchor is also used for a Trusted Boot process, such that any manipulation of the firmware or an attack against its integrity can be safely excluded. Finally the TPM-chip supports the encryption of the firmware and the configuration data of the appliance.

 

The Sirrix.TrustedVPN product family represents a comprehensive solution for connecting local networks of various locations of a company and for the integration of mobile or home office users. The solution excels with its unique and unrivalled combination of ultimate security and foolproof administration. It consists of the Sirrix.TrustedObjects Manager as central management system, the Sirrix. TrustedVPN Boxes as VPN Gateways for the individual locations and a VPN software client, which can use the Sirrix.TrustedVPN Boxes as access point for central company resources.

 

The Sirrix Trusted Objects Manager comes with a novel user interface which in contrast to traditional products focuses purely on logical trust relationships at the meta-level rather than configuring individual device parameters. Mapping a company's specific requirements for confidentiality is significantly simplified. Any errors/slippages or losses when deriving the right set of configuration details at the lower technical level are completely precluded.

 

Typical network administrators, who have not received special security or VPN training, can nevertheless commission and maintain highly-secure virtual networks very quickly. At the same time, such architecture allows for simple, yet effective, auditing of the functionality and safety of desired traffic relations along with the exclusion of undesired communication links.

 

The core tasks of the administrator lay in the setup of logical VPNs by means of the Sirrix.TrustedObjects Manager Such VPNs consist of a specific set of Sirrix Trusted VPN Boxes together with the local networks and/or subnets at each site. As soon as such a network is added to a logical VPN, the configuration data of every system involved is automatically updated to reflect a fully-meshed virtual network tunneled through the Internet across all respective subnets at each site. Any workstations forming part of this set of subnets can then start talking IP with each other with the assurance that:

 

  • No data exchange via the Internet can be tapped or manipulated and
  • Only traffic between approved workstations at well-defined locations can be established.

 

 

Normally stricter security policies come along with higher administration efforts. Not so with the Sirrix.TrustedVPN solution which in contrast to traditional products stands out with a novel user interface focused purely on trust relationships rather than forcing administrators to set individual device parameters. Thus the implementation of company specific security needs is significantly simplified as no mistakes can creep in by negligence or lack of knowledge during the process of deriving technical configuration details out of high level requirements.

 

The Sirrix Trusted Objects Manager can be acquired together with the solution and operated within the customer's premises or could be installed at a service provider, who supports its Sirrix.TrustedVPN customers under the umbrella of a Managed Services contract.


Sirrix.TrustedVPN Box

 

Sirrix is the first vendor worldwide to combine ultimate security with extreme simplicity within a VPN solution thus setting a landmark for a change towards a 3rd generation in this technology.

 

The most essential innovations of the TrustedVPN-appliances are comprised of:

  • Hardware crypto-module for key generation and storage (TPM)
  • Trusted Boot based on hardware-based security anchor
  • Remote Attestation for integrity check of all relevant stacks
  • Sealed storage of firmware and configuration data
  • Central and foolproof management system

Sirrix.TrustedVPN HQ

 

Sirrix is the first vendor worldwide to combine ultimate security with extreme simplicity within a VPN solution thus setting a landmark for a change towards a 3rd generation in this technology.

 

The most essential innovations of the TrustedVPN-appliances are comprised of:

  • Hardware crypto-module for key generation and storage (TPM)
  • Trusted Boot based on hardware-based security anchor
  • Remote Attestation for integrity check of all relevant stacks,
  • Sealed storage of firmware and configuration data
  • Central and foolproof management system

 

 

The Sirrix.TrustedVPN.Box carries only extremely limited persistent configuration data. These are its own IP address, network mask and gateway address plus the Host name of the Sirrix.TrustedObjects. Manager and the Sirrix Root Certificate. All other configuration data will be pushed down by the Management Console and be "lost" after any shutdown of the appliance.

Clients

Partners

Follow Us

Linkedin Twitter Blog

 

 

Parent Site

© 2011-2016 Gateway Group of Companies