buttonbuttonbuttonbuttonbutton

buttonPress RoombuttonStrategic Partnershome

 


 

productcompetitivemonitoringcryptoVueordering

Product Overview

The CryptoVue™ Network Security Appliance moves online data security into a whole new era. Designed to incorporate leading-edge encryption technology used by the Internet banking industry, this patent-pending system has successfully completed a testing program conducted by Motorola to validate its use with the MOTOwi4 wireless broadband solutions in applications requiring secure wireless communications. Under a Product Affiliation Agreement signed with Motorola, the CryptoVue Network Security Appliance is available to Motorola and Authorized Motorola Canopy Solutions Providers wanting to deploy secure wireless communications networks for financial and non-financial markets. Product Specification Sheet

Each location on the enterprise network has a CryptoVue device installed on premises in a secure enclosure with cables connected between its two Ethernet interfaces and the respective LAN and WAN network points. The CryptoVue device implements triple DES IPSec encrypted tunnels to encapsulate Layer 3 data LAN to LAN over the WAN network to each location in the enterprise. The device also implements a packet filtering firewall to block the propagation of any traffic on the WAN network from any device other than a CryptoVue. In addition, the device also routes encrypted packets of traffic to other authenticated CryptoVues on the WAN between the LANs and multiple internal LAN subnets across the network.

What sets the CryptoVue™ apart from other Security Protocols?

Key to the system architecture and design, the CryptoVue software implements a special routine during the install process that pulls the required CryptoVue configuration file off a separate Biometric Crypto Key for each location. This feature greatly simplifies the setup of an encrypted microwave network that often contains hundreds of separately configured IPSec-encrypted tunnels to and from each location.

Crypto KeyBefore performing configuration or other changes, the CryptoVue software also requires all utilities to check for the presence of the Biometric Crypto Key (obtained from a secure location and index finger scanned by the enterprise security officer) and an authenticated user login of the event by the remote CryptoVue Monitoring Server. The enforcement of triple controls is a key distinguishing feature of the CryptoVue System and addresses regulatory concerns with securing microwave networks. The CryptoVue Monitoring Server simultaneously tracks the status of all encryption and radio devices on the enterprise network.

Each CryptoVue device initiates a secure session with the CryptoVue Monitoring Server and advises the server of its status at configurable intervals by the CryptoVue Polling Server that sits onsite at the enterprise operations center and is connected to the encrypted microwave WAN subnet. The CryptoVue Polling Server reports device status and performance data back to the CryptoVue Monitoring Server which will issue an alert if it fails to get a successful status report from any CryptoVue or radio device. The CryptoVue Monitoring Server is also used to generate the initial configuration files for each CryptoVue device and writes it to a specially encoded Crypto Key that is specific to that device’s location.

ERF Wireless maintains a CryptoVue Gateway Server so all CryptoVue devices can be reached via an encrypted PPP over SSH Session for maintenance and central administration. A CryptoVue device will not permit such connections to take place unless its coded Crypto Key has been inserted into the matching device by the security officer and a successful login authentication has been entered by the IT Manager.

The CryptoVue™ Network Security Appliance conforms to the following requirements:

  • Data packets sent or received by CryptoVue devices across the WAN are 3DES encrypted
  • Data packets originating from a CryptoVue device are only being routed across the WAN to another authenticated CryptoVue™ device inside IPSec encrypted tunnels.
  • A CryptoVue device’s Packet Filtering Firewall blocks propagation of any data traffic on the WAN that has not originated from an authenticated CryptoVue Device located within the encrypted network.
  • The system insures that encrypted data packets forwarded to a CryptoVue device from an authenticated CryptoVue device have not been modified in transit.
  • Remote logins to the CryptoVue device can only originate from the trusted CryptoVue Gateway Server
  • Software downloaded and installed through the encrypted update mechanism on the CryptoVue device was digitally signed by ERF Wireless, a Trust Authority
 


.

 

Home Page | Enterprise Network Services | Bundled Wireless Services | Network Operations | Wireless Messaging Services | Oil & Gas Services  |  Investor Relations  | Press Room  |  About Us | Strategic Partners | Contact Us | Sitemap
FAQ | Disclaimer

footer
2911 South Shore Blvd. Suite 100 • League City, TX 77573
(281) 538-2101 • (800) 538-9050