ARCIS
ARCIS layer 3 & 4 Encryptors
IDQ's multi-layer Arcis encryptors are customizable- encryption appliances which provide tunnel-less data protection, including IP packet encryption for Layer 3 networks, and Layer 4 data payload encryption for IP and MPLS networks, and for Video- and Voice-over-IP applications. Arcis encryptors offer full-duplex encryption at rates ranging from 3Mbps to 10Gbps using the leading AES 256 algorithm. In addition, the integrity of the data is guaranteed through use of leading authentication protocols.
The Arcis solution enables organisations to standardise on a single platform capable of encrypting at different layers and at various throughputs. This allows companies to purchase software licenses for their existing encryption hardware as their bandwidth needs increase, providing both flexibility and investment protection. Arcis encryptors operate transparently to the network infrastructure, allowing easy integration without the requirement to upgrade or change the network architecture. The solution is also compatible with load balancing, highly available network designs, QoS and network monitoring tools.
MANAGEMENT & MONITORING TOOLS
Advanced management and monitoring applications – TrustNet Manager and CypherMonitor – allow simple real-time implementation and control of security policies for audit and compliance. Group key management and separation of duties underpin best security practices, while advanced networking and diagnostic features ensure that networks are easy to configure and run efficiently.
The TrustNet Manager gives network administrators the capability to centrally manage Arcis appliances within an enterprise network. ID Quantique’s CypherMonitor application provides security managers the ability to control policy implementation and security alerts in the entire encryptor fleet, with real time alerts and scheduled configurable reports.
features & benefits
Scalable Customizable-Bandwidth Encryption
- Encrypted throughput from 3Mbps to 10Gbps with micro- or milli-second latency
- Ability to upgrade to higher bandwidths through software licenses for network scalability
Compatible with Existing Networks and Applications
- Easy installation into existing network architectures without expensive network equipment upgrades required
- Low cost maintenance (“set and forget”)
- Infrastructure neutral: compatible with underlying networking equipment regardless of vendor
- Transparent Secure Failover: no impact to load balancing, High Availability or disaster recovery designs
State-of-the-Art Encryption and Key Management
- Leading standards-based encryption - 256-bit AES
- Per frame/Packet authentication to protect against “man-in-the-middle” attacks
- Group key management to ensure secure, scalable and efficient management of different network groups (network segmentation)
Advanced Management & Monitoring Tools
- Centralized control and scalable group encryption to allow efficient full mesh connectivity without the need to manage tunnels
- Management and monitoring tools allow easy implementation and monitoring of best-practice security policies (such as Separation of Duties, etc)
- Easy policy configuration and efficient daily management through centralized intuitive GUI, with minimal maintenance requirements
- Local CLI management option
- Ability to monitor security policies through real-time pro-active alerts and configurable reports
|
| Related Links
|
|
|
|
