CipherDriveStealth is a Hardware Full Disk Encryption - Authorization Acquisition (AA) solution to meet the US Government’s Data-at-Rest (DAR) requirement. CipherDriveStealth adds an additional layer of key encryption and authentication on top of any OPAL 2.0 self-encrypting solid-state drive (SSD) or hard disk drives (HDD). The protection of the hard drive’s content is immediate, operating system agnostic and governed by a certified FIPS-140-2 level key encryption technology with the availability of a managed single, two-factor, and multi-factor authentication.
CipherDriveStealth has FIPS-140-2 and Common Criteria certification. CipherDrive 1.2.2 is listed on the National Information Assurance Programs (NIAP) and the NSA's Commercial Solutions for Classified (CSfC) Component List under Hardware Disk Encryption
CipherDriveStealth utilizes a secret token placed on a secure USB token for automatic authentication.
CipherDriveStealth supports multiple hard drives in a single laptop, workstation or server. The authentication has been simplified to use the primary drive as the login screen. All secondary hard drives are encrypted and locked without multiple authentications. If any single hard drive is removed and placed in a different system, a user must authenticate to unlock the hard drive.
CipherDriveStealth protects the computer that is turned off and the data is at rest. The software authenticates a user before the computer can start the operating system. This method of protection protects the entire hard drive's data and not just individual files which may be password protected or encrypted.
CipherDriveStealth supports Windows, Linux, Hypervisors like VMWare and Secureview
CipherDriveStealth utilizes military grade encryption algorithms and is FIPS-140-2 and Common Criteria certified. NIAP and NSA CSfC Component Listed.
CipherDriveStealth allows the management of users to use custom username/passwords, smartcards for 2-factor authentication (PIV, CIV, CAC, and SIPRNET cards) and multi-factor authentication.
CipherDriveStealth can be configured to allow four unique users roles to unlock the desktop or laptop.
CipherDriveStealth allows administrators to review audit logs and authentication reports. These reports can be used to meet privacy compliance laws.
CipherDriveStealth has a "crypto erase" function to delete the contents of a hard drive permanently.
CipherDriveStealth provides a managed single, two-factor and multifactor authentication before the SSD is unlocked and any operating system or virtual machine can start up.
CipherDriveStealth is a pre-boot authentication software. CipherDriveStealth is installed on the shadow partition of the OPAL 2.0 hard drive where it is installed. Once the computer user turns on the machine, CipherDriveStealth looks for a secret token on a secure USB or can prompt the user for authentication (password or smartcard). Once authenticated, CipherDrive2+ passes the proper encryption keys to unlock the operating system.
CipherDriveStealth Dashboard gives a quick and detailed overview of the security profile of the computer.
CipherDriveStealth can be configured and managed to allow multiple users selected four user profiles (Login User, Administrator, Security Officer, and Help Desk) to unlock and manage the workstation or laptop.
CipherDriveStealth Settings provides a number of security settings that can match internal security requirements. Simple and straight-forward settings makes deployment easy and fast.
CipherDriveStealth follows the NSA guidelines for cryptographic erase to ensure the data contents of a hard drive are sanitized.
CipherDriveStealth offers a number logging functions. With 5 detailed logging types, administrators can review the security profile of the computer and mitigate unauthorized access.