|
|
Cross Domain Solutions and Information Assurance News
|
|
The Way Forward with XML Guarding
For further details or a demonstration, please info [at] nexor [dot] com (subject: Further information on The Way Forward with XML Guarding) ( register your interest).
|
XML is increasingly popular as a standardised format for data transfer. To further enhance our family of guards, we have developed a prototype XML filter in close collaboration with our customers. The XML filter has initially been added to Nexor Sentinel, but is also designed to plug into Nexor’s generic data guard architecture so it can be used with any data guard that carries XML content via a variety of protocols such as HTTP, FTP, SMTP, and XMPP.
|
|
International Labelling Support Assists Interoperability
|
Interoperability is essential in today’s world of collaboration and cooperation against increasing enemy threat. It is a long-standing problem that no common definition exists for a text-based label, so nations and organisations have defined their own over the years. New functionality in Nexor’s guard and gateway software enables mapping of any national label to any other national label, independent of the syntax or the language of the label presented.
|
|
Purifile Filter Integration Extends Deep Content Inspection
|
ITT's PuriFile® software is a file inspection application that performs deep analysis of various Microsoft Office file formats and .pdf files. The software detects and identifies hidden objects and metadata, which could accidentally or maliciously disclose sensitive information or confidential digital assets that would otherwise go unnoticed in typical review processes. PuriFile has been integrated into Nexor Sentinel 3 and is available now.
|
|
Multi-Domain Guard Support Contributes to Reduced Footprint
|
Whether a reduced footprint appeals through its contribution to the green agenda, its ability to fit into a smaller operational space or ‘simply’ by reducing cost, finding a single box guard solution to support up to eight concurrent domains must score highly. The latest version of Nexor Sentinel 3 offers this support and can be configured from the management console and acted on in the appliance.
|
|
Nexor Watchman for Microsoft UAG
info [at] nexor [dot] com (subject: Demonstration for Nexor Watchman for Microsoft UAG) (Register your interest in a demonstration here).
|
Nexor will release Watchman as a plug-in for Microsoft’s Unified Access Gateway (UAG) in July. Watchman enhances UAG by enabling policy based information release decisions based on security labelling, including classification, caveats and clearances, and based on dirty words. Watchman for UAG will come under the banner of Microsoft’s Secure Unified Communication solutions.
|
|
CLIP & Sentinel 3: Solid Foundation, Secure Messaging Solution
|
Leading SELinux authority and host of the SELinux open source repository, Tresys Technology, has written a comprehensive paper describing how Tresys and Nexor combined the latest security technology to create secure solutions for inter-domain communication. The paper describes how the development process used by Nexor and augmented by Tresys expertise allowed the creation of solutions with the highest security, best performance, and lowest development cost.
|
|
Nexor Advisory Board Debates Guards and Impact Levels
If you would like to contribute to the debate or learn about potential solutions info [at] nexor [dot] com (subject: Nexor Advisory Board Debates Guards and Impact Levels) (please contact us).
|
At a recent Advisory Board session, leading members of the Information Assurance community joined Nexor in discussing the applicability and requirements for high assurance guarding at IL3 as well as at higher levels. Policy and labelling were considered as well as the human and hardware factors.
|
 |
|
|
|
|
|
Fast Track, Virtualised Secure Message Handling Hailed a Success
|
Further to the launch of its revolutionary Virtual Military Message Handling System (VMMHS), the fast track approach to the provision of MMHS, Nexor is pleased to confirm successful implementation in several countries not only for defence ministries, but also for interior and justice departments who are starting to look for higher grade security within their messaging systems.
|
|
|
|
|
Research and Innovation News
|
|
|
To support our research work, we are always looking for key innovations in allied industries to see how these can be applied in the defence and security marketplace.
|
|
|
Throttling
The most basic form of communications security is to actually inhibit a specific, unwanted communications channel. However, in some environments this is not always possible. A simple example is the use of VOIP technology, like Skype, over mobile IP links – the resilience of an application like Skype makes it difficult to block. An alternative approach would be to allow Skype calls, but reduce the quality of service, so it effectively becomes unusable. This process of slowing down the data rate is known as ‘throttling’. In an information release environment, throttling techniques could be used as a security control to slow down the transit of data, to effectively make the channel unusable, where ‘normal’ guarding capability is not available or achievable.
|
|
|
U-Prove
Recent innovations in PKI technology have shown how it is possible to provide a digital signature across a data set, without having to reveal the full content of the data. This privacy enhancing technology is used in Microsoft’s U-Prove product. Nexor speculates that this concept has a potential application in the exchange of intelligence data. Specifically, two parties could confirm the integrity of the data without the actual transmission of that data over a network. As an example, identity information, including security credentials, could be used securely, and ‘sensitive’ data safely shared with those parties that need it, without leaking more information than is required. We are interested in your views as to applications where these concepts could add value.
|
|
Knowledge Transfer Research Programme with Loughborough
|
Nexor has made a significant contribution to research at Loughborough University Business School into how knowledge is transferred within different service support environments. The practical element of the research involved close observation of Nexor’s technical staff as they engaged with customers to resolve support queries. The visiting researcher was impressed by Nexor’s technical capability and customer-focused attitude. We await the results of the overall research programme with interest.
|
|
iGRC Consortium Wins Technology Strategy Board and SEEDA funding for £1.7m Information Infrastructure Protection R&D Project
|
The Government-funded TSB and the South East England Development Agency (SEEDA) are backing a £1.7m R&D project to develop an innovative model for integrated Governance, Risk and Compliance (iGRC). Nexor is contributing to standards definition and sensor technology.
|
|
Our Work with Nottingham Cyber Psychology Experts
|
Nexor has engaged with Nottingham Trent University (NTU) to understand better how human factors might lead to the leakage of classified electronic data from organisations and, therefore, how technology might be deployed to mitigate against these ‘human failures’. An initial observation from preliminary research suggests that the user places a different level of thought and trust into the creation, i.e. if they own it, of sensitive information than they do in the method they employ to share it. An example of this is the difference in security awareness between the actual composition of a message by the user and any attachment to that email that they wish to share. Nexor is using this information to improve its Watchman scanning technology to provide better and more effective protection of sensitive information. We will continue to improve our technology based on the findings of the ongoing research.
|
|
|
|
|
|
|
|
Experience in Abundance
|
Nexor is pleased to announce the following appointments:
-
John Richardson joins us as Head of Services. John brings a wealth of consultancy, Information Assurance and management experience from Siemens.
-
Brian Carter is working with us as a Defence Industry Advisor.
-
John Magowan is working with us as a Security and Resilience Industry Advisor
|
|
Early Adoption of TickITplus
|
TickITplus is currently being developed to enhance and improve the existing TickIT Scheme by introducing maturity concepts which will provide opportunities for greater business improvement. Nexor is pleased to be actively involved in the development of TickITplus and is planning to participate in the first live pilot of the scheme prior to its launch later this year.
|
|
Nexor Sponsors HeroRATs
|
Nexor is pleased to support the HeroRAT initiative. HeroRATs are highly trained African giant pouched rats that are used to detect land-mines and tuberculosis, both essential causes in under-developed and war torn countries. Nexor has adopted Ziko and Tyson.
|
|
Nexor Reduces Carbon Footprint
|
Nexor has deployed a revolutionary, low energy cooling system in its equipment room that will help to cut carbon emissions and reduce costs. A 70% reduction in cooling energy is being achieved through the innovative air handling solution from 4energy, a dynamic, young organisation based in Nottingham. The solution manages the effects of high and low temperatures on equipment and includes a smart environmental monitoring and control system that ties all the individual parts of the system together in real time.
|
|
|
|
|
|
|
|
Watch our web-site for more details of our presentations and workshops. |
This year, we will be present at:
-
IA10: 14th-15th September
-
NATO IA: 28th-30th September
-
Technet International: 28th-29th October
-
RSA Conference: 12th-14th October
|
info [at] nexor [dot] com
|
