Current Filter: Security>>>>>Review>

   

Its enterprise products are deployed in over 80 countries and they have not once been hacked in an impressive 15 years of service. Its latest CryptoFlow App builds on this remarkable record by providing a total end-to-end security solution for data in motion within any business environment.

CryptoFlow App is independent of the network infrastructure and isn't reliant on firewalls either. By segmenting the network and restricting user access to specific applications, it effectively blocks any lateral movement across the network. This is a favourite attack vector of hackers that allows them to exploit associated systems.

Central to the solution are the CryptoFlow Enforcer appliances (CFEs), which are initially installed in the data centre, close to the protected applications. They can be physical or virtual and, for the latter, they are placed on the same virtualisation host or directly in front of it.

Protection can be extended to remote sites and business partners by deploying CFE appliances at those locations as well. They require no additional network or application configuration, hence avoiding the need to create complex VLANs, ACLs and other security measures that can easily leave holes for hackers to gain entry from.

All management and monitoring is handled by a single CryptoFlow Creator (CFC) appliance. This centralises security policy configurations and deploys them to all CFEs in the organisation. The process of protecting an application is remarkably easy. From the intuitive web portal, you start by defining the application, where you create a profile with a web address, port number and icon.

Security profiles define encryption algorithms and key rotation intervals and Certes Networks offers a wide choice, including military-grade AES-256. Users and groups are imported via LDAP or Active Directory and you can then start creating CryptoFlows. All you do is select applications, assign security profiles, specify the users and groups that are authorised to access them and leave the CFC to propagate the policies to all CFEs.

Along with administrator access to the CFC, the next version of CryptoFlow will allow you to create Operator and Auditor roles. Operators will be allowed to maintain CFEs where they can set up identity authorities for users and apply upgrades. The Auditor Dashboard will provide logs of users and the CFEs and applications they are accessing, as well as traffic statistics.

At present, only raw log data is provided, which must be exported into CSVs for use in third-party reporting tools. However, more new features are planned to provide graphical reports, push notifications and email alerting.

CryptoFlow presents a shallow learning curve to users because, from their perspective, it's virtually transparent. A web link is emailed to them where they provide their credentials for enrolment, after which a background app is loaded and a secure VPN profile created.

This is a one-time enrolment, as each time a user accesses the protected application, the secure VPN is automatically loaded. It's the same process irrespective of the device being used and applies equally to Windows PCs, Macs, iPads, iPhones and more.

The iOS app is freely available at the iTunes App Store and just requires users to enter the CryptoFlow credentials in order to access their applications. Globetrotting mobile workers will approve of this solution as the app automatically locates the nearest CFE appliance and establishes a secure connection.

We found CryptoFlow App unbelievably easy to deploy and its versatility means that it can be used to secure LAN, WAN, B2B, cloud and mobile applications. By creating a cryptographic boundary around each application, you know that, even if firewalls fail, your data will remain protected. CS

Product: CryptoFlow App
Supplier: Certes Networks
Web site: www.certesnetworks.com
Telephone: +44 (0) 203 058 1852
Email: info@certesnetworks.com