| Secures data - even if the hardware is stolen |
|
Data within the Reflex DataVault (HMG) is secured at all times. By automatically locking the encrypted drive (container) at shut down. The user does not need to remember to lock the container. The data is also secured in the event of power or system failure. |
Easy, save it, encrypt it functionality |
|
Any data saved within the container is automatically encrypted. Any data copied from the container is automatically decrypted. Users simply copy/save all data to the container and do not have to think about encryption. |
Centralised encryption key distribution & management. |
|
Encryption keys can be delivered securely across a LAN to predefined users. Should the key be compromised or the passwords forgotten the same system can be utilised to inject either a replacement key or to re-inject the original with new passwords. |
3DES encryption algorithm as standard |
|
3DES or Triple DES is a CESG approved and accepted algorithm for government use. |
Up to 4TB of storage per Drive (container) |
|
The encrypted container can be anything from 5MB - 4TB in size. The only other limit is the amount of "free" unused space you have on the host hard drive. |
FireGuard encoded password/passphrase |
|
CESG approved password/phrase mechanism using the FireGuard algorithm provides access to the locked container together with your Operating System "user" logon name. |
The Reflex DataVault (HMG) Key Server automatically retrieves user & group information from MS Windows NT/2000/2003 domain server to perform centralised key management. |
|
Software deployment and key management can be centrally managed to speed-up installation where large installations are considered. By mirroring the NT/2000/2003 user groups, users can be configured for installation. |
Automatically secures Windows Swap/Paging file. |
|
By automatically purging the Windows Swap file at shut down the chance of sensitive temporary data being left in clear text is eliminated. |
Silent network installation |
|
Using an installation script it is possible to install multiple copies of Reflex DataVault (HMG) and perform the necessary key backup automatically across a network. NOTE: software deployment application is required such as SMS or Reflex Deployment Server. |
Supports shared laptop configuration |
|
Where two or more users share a laptop it is possible to assign a container to each user of the system. |
Links containers to user profiles on shared PCs |
|
By automatically linking each created container to a user profile the system will only offer access to the users unique container. |
Encryption key can be changed periodically |
|
The system supports upgrading of the disk encryption key either periodically of in the event of key compromise. This function is robust enough to cope with power failure during the process of decrypting with the original key and encrypting with the new key. Access passwords can be changed without the need to change the disk encryption key by performing a key inject with the current encryption key. |
Containers can be formatted FAT or NTFS and support file compression |
|
Just like a standard drive the container can be formatted as desired. CESG recommend NTFS. |
