Encryption specialist BeCrypt has joined forces with authentication systems supplier DMS to produce a ‘military grade’ security scheme for remote access to confidential data.
The system is built around two products known as Trusted Client and Casque, sourced from each company.
Delivered through a USB stick, Trusted Client allows remote workers to access their network by providing a secure isolated environment on a host PC in which all data including the operating system is encrypted.
All data saved to a Trusted Client device is automatically encrypted. Encryption is performed using the BeCrypt Cryptographic Module, which the vendor said already has CCTM and FIPS 140-2 approval and is under going CAPS validation.
Casque is an access control suite that handles authentication, authorisation and key management. Basil Philipsz, MD of Distributed Management Systems Ltd said the system not only strongly authenticates a user but also verifies end client health.
Once Trusted Client has set up a secure tunnel via the firewall and secure gateway, a Casque token is held to the workstation screen to receive an optical encrypted message. A computed response is shown on the token’s own display which the user enters into the workstation keyboard.
The system is designed to prevent against replay attacks, phishing and cloning of the token, and after completing the session, the user can simply shut down leaving no record of the session on the PC.