Enterprise Security Appliance – All in a Box is an all-in-one security solution, designed within a single hardware device, integrated with a Hardware Security Module (HSM). Enterprise Security Appliance – All in a Box includes various functional modules, such as:
- Tokenization
- Electronic authentication
- Digital identity
- PKI System (CA, VA, TSA)
- Remote digital signature
- Data Encryption
- SCA/FIDO2
- E2E encryption
The product features a compact design, making it easy to transport and install, while seamlessly integrating with the organization’s existing IT systems. Its flexible functionality can be quickly customized or expanded to meet specific business needs, adapting to growth and changes over time.
With the Enterprise Security Appliance, organizations can encrypt data, establish digital identities, build dedicated PKI systems, perform remote digital signatures, manage, issue, and revoke digital certificates, and more. The solution is easy to install and deploy, with significantly lower investment costs compared to other PKI solutions.
Businesses and organizations have the flexibility to build an Enterprise Security Appliance tailored to their most relevant features, with reasonable costs and the fastest deployment time.
Standards and Quality Certifications
- The server device is certified with FIPS 140-2 Level 3 security.
- ISO Certifications: ISO 9001:2015, ISO 14001:2015, ISO 27001:2022.
- Compliance with data security standards: GDPR, SOC 2 Type II, HIPAA, and PCI DSS.
- Hardware Security Module (HSM) is certified for high security: FIPS 140-2 Level 3, FIPS 140-3 Level 3, CC EAL4+ AVA_VAN.5, or Common Criteria EAL4+ (EN 419 221-5).
- Real-time authentication via CRL and OCSP.
- Compliant with the General Data Protection Regulation (GDPR).
- Supports REST API service interface.
- Fully compliant with RFC 3161, RFC 5816, and ETSI standards, including XAdES-T, CAdES-T, PAdES-T according to ETSI EN 319 421.
- Meets the Time Stamp Profile as per ETSI EN 319 422 for Qualified Timestamps and AATL timestamps.
Key Advantages
- Full control over the issuance, registration, revocation, and management of users' digital certificates
- Control over the content, parameters, and policies for issuing digital certificates.
- Meets the needs of building a dedicated CA system for customers' IT infrastructure and internal applications.
- Easily upgradeable, installable, scalable, and adaptable.
- Complies with CE, RoHS, and FCC standards.
- Supports installation and integration across a range of management models, from basic to advanced (High Availability, DR/DC, Multi DC).
- HSM hardware is certified under eIDAS, Common Criteria EAL4+ (including AVA_VAN.5, ALC_FLR.2, EN 419 221-5 Protection Profile), FIPS 140-2 Level 3, and FIPS 140-3 Level 3.
- Timestamp protocol complies with RFC 3161 and RFC 5816.
- Time synchronization with external sources via NTP, with support for synchronization devices such as GPS and cesium clocks.
- Simple system administration through HTTPS, requiring digital certificates for administrators.
- Flexible integration with existing IT infrastructure and internal applications.
- High compatibility with Microsoft Office, Adobe Acrobat, and systems compliant with RFC 3161, 5816, or Microsoft Authenticode.
- Supports both basic and advanced deployments (High Availability, DR/DC, Multi DC).
- NTP support: Works with Stratum 2 & 3 NTP servers and GPS NTP to ensure accurate, reliable time synchronization.
- High-performance, robust, and reliable VA server, compliant with RFC 6960, RFC 2560, and RFC 5019 for OCSP validation.
- Supports CA certificate distribution and certificate revocation list (CRL) access via Certificate Store Access through HTTP.