Cipherdriveone
Introducing CipherDriveOne Stealth: A Secret Token Solution for UAV and Remote Packages
CipherDriveOne Stealth is a Hardware Full Disk Encryption - Authorization Acquisition (AA) solution to meet the US Government’s Data-at-Rest (DAR) requirement. CipherDriveOne Stealth adds an additional layer of key encryption and authentication on top of any OPAL 2.0 self-encrypting solid-state drive (SSD) or hard disk drives (HDD). The protection of the hard drive’s content is immediate, operating system agnostic and governed by a certified FIPS-140-2 level key encryption technology with the availability of a managed single, two-factor, and multi-factor authentication.
Features
____________________________________________________________________________________________________
Secret Token Authentication
CipherDriveOne Stealth utilizes a secret token placed on a secure USB token for automatic authentication.
Multi-Drive Support
CipherDriveOne Stealth supports multiple hard drives in a single laptop, workstation or server. The authentication has been simplified to use the primary drive as the login screen. All secondary hard drives are encrypted and locked without multiple authentications. If any single hard drive is removed and placed in a different system, a user must authenticate to unlock the hard drive.
Pre-boot Locking
CipherDriveOne Stealth protects the computer that is turned off and the data is at rest. The software authenticates a user before the computer can start the operating system. This method of protection protects the entire hard drive's data and not just individual files which may be password protected or encrypted.
Operating System Agnostic
CipherDriveOne Stealth supports Windows, Linux, Hypervisors like VMWare and Secureview
Military Grade Encryption and Certification
CipherDriveOne Stealth utilizes military grade encryption algorithms and is FIPS-140-2 and Common Criteria certified. NIAP and NSA CSfC Component Listed.
Strong Multi-Factor Authentication
CipherDriveOne Stealth allows the management of users to use custom username/passwords, smartcards for 2-factor authentication (PIV, CIV, CAC, and SIPRNET cards) and multi-factor authentication.
Custom User Roles and Configuration
CipherDriveOne Stealth can be configured to allow four unique users roles to unlock the desktop or laptop.
Audit and Logging
CipherDriveOne Stealth allows administrators to review audit logs and authentication reports. These reports can be used to meet privacy compliance laws.
Self Destruct Erase
CipherDriveOne Stealth has a "crypto erase" function to delete the contents of a hard drive permanently.
How does CipherDriveOne Stealth Work?
CipherDriveOne Stealth is a pre-boot authentication software. CipherDriveOne Stealth is installed on the shadow partition of the OPAL 2.0 hard drive where it is installed. Once the computer user turns on the machine, CipherDriveOne Stealth looks for a secret token on a secure USB or can prompt the user for authentication (password or smartcard). Once authenticated, CipherDriveOne Stealth passes the proper encryption keys to unlock the operating system.
CipherDriveOne Stealth Dashboard
CipherDriveOne Stealth Dashboard gives a quick and detailed overview of the security profile of the computer.
CipherDriveOne Stealth Users
CipherDriveOne Stealth can be configured and managed to allow multiple users selected four user profiles (Login User, Administrator, Security Officer, and Help Desk) to unlock and manage the workstation or laptop.
CipherDriveOne Stealth Settings
CipherDriveOne Stealth Settings provides a number of security settings that can match internal security requirements. Simple and straight-forward settings makes deployment easy and fast.
CipherDriveOne Stealth Secure Erase
CipherDriveOne Stealth follows the NSA guidelines for cryptographic erase to ensure the data contents of a hard drive are sanitized.
CipherDriveOne Stealth Logging
CipherDriveOne Stealth offers a number logging functions. With 5 detailed logging types, administrators can review the security profile of the computer and mitigate unauthorized access.