1 / 26

SafeNet – Integrated encryption solutions From Desktop to the Global Communications Network

SafeNet – Integrated encryption solutions From Desktop to the Global Communications Network. Mark Baldwin. The Foundation of Information Security. Encryption experts with 23 year history of protecting: Communications Intellectual Property Rights Information and Identities

wanda
Download Presentation

SafeNet – Integrated encryption solutions From Desktop to the Global Communications Network

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. SafeNet – Integrated encryption solutionsFrom Desktop to the Global Communications Network Mark Baldwin

  2. The Foundation of Information Security • Encryption experts with 23 year history of protecting: • Communications • Intellectual Property Rights • Information and Identities • Global Company with Local Service • Headquartered in Maryland, USA • Regional headquarters in • Camberley, UK • Hong Kong • 30 + offices located in more than 20 counties • Partners in an additional 100+ countries • Revenue • 2005 - $263m • 2006 – guidance $290m to $310m

  3. Continuing the Foundation • Employees • 950 + employees including 300 + engineers • Company with one of the largest amount of encryption engineers • Strategy • Choose Market Segments which: • Require our expertise • Can support growth => 20% yr. • Have no dominant competitor • Will allow SafeNet to be a segment leader • Create value by bringing complete solutions to chosen market segments • Leadership in high growth market segments: • Government Security • Identity Protection • Digital Rights Management

  4. Acquisition History

  5. SafeNet Product Portfolio

  6. Financial Credibility – SafeNet Protects • 80% Of The World’s Intra-Bank Fund Transfers Value: Approximately $1 Trillion is USD Equivalence • Transactions for the 5 of World’s Largest Central Banks • The Majority of ATM Transactions in Europe, The Middle East, and Asia • The Majority of PKI Digital Identity Keys in America’s Top Financial Institutions

  7. SafeNet – The Foundation of Information Security • SafeNet protects more Government Information than any company in the world • SafeNet protects more global financial transactions than any one else • SafeNet is used by 80% of the Global 2000 • SafeNet has the only complete product lines for data at rest, data in motion, and Identity Management • SafeNet is the world leader in PKI Root Key and Application Access Protection • SafeNet is the only company in the world that can license and lock down software, then monitor, report and intervene in its piracy • SafeNet is the company that created the world’s first multi-function security chip and whose intellectual property prevails in the majority of current security chip design

  8. Securing Data in Motion

  9. SafeNet Network Security

  10. High Speed Encryption • Securing data as it travels across an untrusted network by means of encryption • Types of network are: • Private network links – Carrier/Telecom Service Provider (WAN circuits) • Public Networks – the Internet

  11. WAN Encryptors • Securing data by encrypting data over Service Provider Virtual Circuits for the following protocols (network technologies): • Digital Leased Lines (Link Circuits) SLE • Frame Relay SFE • ATM SAE • SONET/SDH SSE • Metro/Carrier Ethernet SEE • All devices available to suit different bandwidths (capacities) and with different interfaces (connectors) to suit local environments • Unique session keys generated for each connection • Options are to Encrypt, Bypass or Block • Managed by SMC

  12. WAN Encryptors Telecommunications Carriers/Service Providers lease private connections (circuits) across their shared networks, but cannot guarantee security SafeNet can encrypt all data travelling over Telco-provisioned services: Digital Point to Point (Leased Line) Connections - SLE Point to Multipoint connections using: Virtual Circuits configured over Frame Relay - SFE Virtual Paths/Circuits configured over ATM - SAE Synchronous “Slots” configured over SONET/SDH - SSE Metro/Carrier Ethernet links (supports VLAN tags & MPLS services) - SEE

  13. Infrastructure SecurityData in Motion – WAN Technology • Wide Area Network Encryptors Ethernet ATM Frame Link SONET/SDH AES AES AES 3-DES AES 3-DES AES 3-DES Algorithm V.35,X.21, RS-232, RS-449, EIA-530, T1, E1, T3, HSSI Ethernet OC3/STM1 OC12/STM4 OC48/STM16 OC192/STM64 T1, E1, T3, E3, OC3, OC12 V.35,X.21, RS-232, HSSI Network Up to 1Gbps Up to 10 Gbps Up to 622 Mbps Up to 52 Mbps Up to 52 Mbps Speed

  14. WAN Technology • Ethernet EncryptorSafeEnterpriseTM Ethernet Encryptor connects between sites using Carrier/Metro Ethernet trunks up to 1Gbps • SONET/SDH EncryptorSafeEnterpriseTM SONET Encryptor connects between the SONET multiplexer/ demultiplexer and the network node to provide transparent encryption of SONET connections. Individual STS-1 streams can be encrypted or passed through unchanged. • ATM EncryptorThe SafeEnterpriseTMATM Encryptors are Layer 2, perimeter based security devices that are fully transparent to the network providing wire speed encryption at speeds up to 622 Mbps. • Frame EncryptorThe SafeEnterpriseTM Frame Encryptors are high performance network security appliances that combine the industry’s strongest encryption and authentication schemes to encrypt data securely across Frame Relay networks. • Link EncryptorThe SafeEnterpriseTM Link Encryptors are high performance network security appliances that combine the industry’s strongest encryption and authentication schemes to encrypt data securely across point-to-point linked networks.

  15. IPSec VPN Products • Internet traffic uses the Internet Protocol (IP) – this is made Secure by means of encryption – IPSec • IPsec can be delivered between: • Site to Site – Gateway to Gateway • Remote user to Site/Gateway • Gateway products - HA500, 1000, 2000, 4000 (increasing capacities to handle greater numbers of individual connections) • Options are to Encrypt, Bypass or Block based on protocol profile • Unique session keys generated for each connection • Remote User product – HARemote and SoftRemote (IPsec software client installed on user’s PC)

  16. IPSec VPN Products • For encrypting network traffic between sites, and to remote users - using the internet • HA (High Assurance) Gateway 500 – 1.5Mbps Internet connection – small remote offices • HA (High Assurance) Gateway 1000 – 10Mbps Internet connection – regional offices • HA (High Assurance) Gateway 2000 – 100Mbps Internet connection – branch offices • HA (High Assurance) Gateway 4000 – 1Gbps Internet connection – main data centres • HA Remote IPSec Client – installed on Remote User’s machine (Windows, & PDA) to connect to IPSec Gateway • [These products require SMC for configuration]

  17. Infrastructure SecurityData in Motion – IPSec VPN Technology • IPSec VPN Gaetways HA 500 HA 1000 HA 2000 HA 4000 AES 3-DES AES 3-DES 3-DES AES 3-DES Algorithm 500 1000 10000 3000 IPSec tunnels 1000 2000 100000 100000 IPSec Connections 1.5 Mbps Up to 10 Mbps Up to 100 Mbps Up to 1 Gbps Speed

  18. IPSec VPN Technology • Security Management CenterRobust network security management software that provides comprehensive management for WAN encryptors, VPN gateways and remote access • HighAssuranceTM Remoteand SoftRemoteIPSec client software used for creating VPN connections from client-to-gateway or client-to-client • SoftRemotePDA and Pocket PCIPSec client software used for creating VPN connections on wireless portable devices • HighAssuranceTM 500, 1000, 2000, and 4000 GatewaysIPSec compliant network security devices that provide flexible, high performance solutions for configuring Small Office to Corporate Office networks

  19. Security Management Centre • Software application that securely manages the installation, configuration and monitoring of SafeNet WAN and Internet encryption devices • Devices certified with Digital Certificates • Devices use certs to exchange unique encryption keys • Unique trusted relationship: • Encryptor – to encryptor • Encryptor – to SMC • Manage all devices from one central location • Unique encrypted connection from SMC to each device • Built in CA and LDAP to administer generation and storage of certificates for devices and users • Licenced to manage a maximum number of devices (min 10) • Failover/Resilience supported • Comprehensive monitoring/audits • Different levels of users/permissions

  20. SMC – Device Management

  21. Securing User Identity

  22. SafeNet Tokens • Strong 2-Factor Authentication • FIPS 140-2 Level 3 Certified • Holds Identity Credentials - Digital Certificates or Passwords • Built In Crypto Processor • Door Entry with SmartCard Format • USB Format needs no Reader • Single Sign On Capability • Administrator Configuration Tool • CMS available for large deployments

  23. Securing Data at Rest

  24. SafeNet ProtectDrive • Designed for laptop, personal computer, or server security • Access control, hard disk and removable media encryption • Protection of operating system and user files from unauthorized access after theft, loss, disposal, rental • Password or token authentication

  25. The SafeNet System

  26. THANK YOU Mark Baldwin – Director, Training Services EMEA mbaldwin@uk.safenet-inc.com

More Related