Software copy protection, license management, user authentication, internet security and smartcard technology

AEP Net Remote: Highly Secure Remote Connectivity

The AEP Net Remote extends the security, functions and features of AEP Net into the remote access domain. Like its big brother the AEP Net Remote provides both data confidentiality and source authentication for IP network traffic.
 

Features

  • Offers up to 10Mbps throughput (1464 byte UDP) and employing a modified version of the IETF IPSEC ESP tunneling protocol.
  • Encryption is at the IP layer offering an RJ45 network interface for onward connection to Internet router/modems or other network connections.
  • Connects remote access PCs or Laptops onto to host networks or an AEP NET encrypted network via a Net hub encryptor.
  • Enables flexible network architectures, providing a wide range of remote access security solutions.
  • Net hubs can support up to 1000 Net remote units.
  • Employs the same cryptographic network management tools as the Net VPN product (see AEP Net above); both remote access and network security gateway configurations can be managed from the same management station.
  • Allows network managers to maintain high assurance cryptographic control of network membership (including central equipment registration and certificate revocation), and to manage Communities Of Interest (COIs).

IPSEC ESP tunneling mode has a 36 byte overhead. This must be taken into account in equipment configuration.
 

Deployment and Use

AEP Net and Net Remote are primarily used for backbone (point-to-point) network and remote access communications security, however as encryption is performed at the IP layer the products can be used to build very flexible solutions for Public Sector projects. AEP Net is also designed to provide data separation and reverse tunneling.

Examples of different applications include:

  • Data separation between different protective markings over high-grade circuits (including compartments and caveats).
  • Voice over IP (Net is being used on a classified pan European network for VoIP today)
  • Mobile laboratories / incident rooms
  • Protection CCTV or other remote sensing data
  • Formal separation between different data strands over a common circuit to overcome need-to-know and data ownership issues.
 

 

Tip a friendE-mail this Printer friendlyPrint this