Xiphra.com

Xiphra Management System

EVALUATE PRODUCT

ABOUT Xiphra Management System

Powerful security of large encryption networks depends not only on the use of dedicated hardware encryption, but also on how well these systems are managed. Poor management of cryptographic keys and network topology can lead to complex and unreliable systems, resulting in escalating operational costs and even loss of critical information. To prevent all these, we built Xiphra Management System (XMS) – next generation of scalable central management system.

Strategic Approach to Key Management

Based upon operating principles of AEP’s management system that currently maintains thousands of encryptors internationally.

The XMS implements intuitive graphical interface that reduces the risk of misconfiguration. It allows for seamless and fast deployment of new encryptors and grows with evolution of your service, ensuring unified policy across entire network. Thanks to “Over the Air Rekeying” (OTAR) functionality there is no need for site visits to rekey devices anymore; the whole network can actually be rekeyed in matter of minutes.

Why Xiphra Management System?

•    Provides assured and effective compromise management
•    Can eliminate the ordering, transportation, storage and handling of sensitive crypto key material
•    Automatic key generation, distribution and validation checks eradicate a whole class of potential human errors
•    Rapid system deployments, global policy updates and on demand key renewals
•    Foregoes the need for costly annual site visits to re-key equipment

Increased Encryption Service.

The XMS comprises four elements that enable you to maintain high-assurance cryptographic network centre.

Ultra Safe Keyper Plus^TM - the only networked HSMs employing a FIPS 140-2 Level 4 validated cryptographic security module (maintaining this certification level for fifteen years). Keyper provides you with highest-possible quality and physical security for your keys that underpins the PKI security of the entire system.

Xiphra Policy provides the graphical user interface for global, group and element level encryption configuration. It includes enrolment, VPN topology definition, resilience administration, troubleshooting and device ‘stun’.

Xiphra Management Encryptor enforcing management encryptor mode, authenticating and encrypting all management communications as well as providing both boundary protection for XMS, and cryptographic isolation of management and mission traffic.

Certificate Authority (CA) creates X.509v3 certificate policies for encryption authentication and management, and enables assured device ‘kill’ through issuance of the Certificate Revocation List (CRL) -in the event of encryption removal or compromise.