SecuriVPN – Quantum-secure encryption system at the highest level of confidentiality
Quantum-secure IP encryption system SecuriVPN is the solution for tactical and strategic defense operations.
Certified IP communication system for the world’s most demanding customers
SecuriVPN is a hardware based quantum-secure network encryptor that provides the means for truly private communication within a geographically scattered organisation or between temporary multi-organisations. Such private communication, to be compared to a sealed off tunnel, enables data to be sent and received across untrusted networks, all while preventing advanced attackers e.g. state-funded attackers, from reading or changing the data.
With quantum-secure algorithms, SecuriVPN excels in protecting data with extended lifetime while safeguarding against interception, replay attacks and manipulation of the information.
Key features
The system protects against interception and manipulation of data flows in communication networks.
Tailored for long-term communication privacy
Long-term communication privacy is ensured by unique technology developed by Advenica. All IP communication, data transfer and key handling is protected by quantum-secure algorithms and protocols, exclusive for the SecuriVPN product range. SecuriVPN renders vital network security functionalities such as authentication of information origin, integrity control, and anti-replay mechanism. It also enables network architecture masking.
Revolutionizing Digital Communication with Quantum-Secure Encryption
Through quantum-secure encryption and a breadth of tactical capabilities, SecuriVPN empowers defense forces, government agencies, critical infrastructure and the private sector to take the next step in digital evolution. The solution involves simple future-proof key management, versatile functions with high availability and the ability to communicate over connections regardless of signal quality. In this way, communication can be simplified while being resilient. Other functions, such as sending to multiple receivers, Quality of Service, dynamic routing, radio silence and emergency deletion enable several different areas of use.
Quantum-secure IP encryption for strategic and tactical communications
With arrival of quantum computers, the most popular encryption algorithms are no longer able to provide adequate protection to information with extended lifetime naturally generated by for example defence agencies during intelligence gathering missions, battlefield operations, disaster relief and collaboration with allies. Advenicas unique encryption technology based quantum-secure algorithms are used for both encryption of data in motion and key exchange. It also enables SecuriVPN ISA to provide tactical features such as silent mode reception to avoid detection, easy and fast declassification to CCI, low power consumption for mobile mode, power outage resilience with key preservation as well as distributed central management.
Integrated insider threat protection – Three Domain Separation
To eliminate the risk of unauthorised disclosure of classified information by rogue administrative staff, Advenica has developed technology to separate classified information and transport networks from device administration, called Three Domain Separation. The patented Three Domain Separation technology introduces a third domain, administration domain, in addition to the traditional Red/Black domain separation. Thus, classified information from the protected (RED) domain cannot be accessed from the administration domain. The Three Domain Separation technology effectively eliminates the insider threat in government, armed forces, intelligence organisations as well as in critical infrastructure organisations.
Three Domain Separation technology
SecuriVPN uses Three Domain Separation technology which ensures isolated system administration. The administrative staff can manage the system, without gaining access to classified information. The administration of larger networks is facilitated by the use of key servers and remote administration, including remote configuration, network monitoring and logging.
Security challenge where SecuriVPN is a good solution
Secure communication with remote sites
Many organisations depend on information exchange with remote sites. Communication between the main office at one location and a small office somewhere else is needed. These offices are connected using the Internet, but sending confidential or sensitive information on the Internet is not an option in most cases. Read more about secure communication with remote sites.
Product sheet
SecuriVPN
Here are some frequently asked questions about our SecuriVPN!
What is a typical SecuriVPN customer?
All EU companies, organisations and authorities that need to communicate sensitive information. Please note that for non-EU customers, export regulations may apply. Contact Advenica for further information.
Why should you choose SecuriVPN?
If you need to communicate sensitive information, you need a solution that comes with high assurance. This means that very high demands are placed on security and control at all stages – from development and production to delivery. Thus, users can be confident that the sensitive information is protected during transport between different networks. Advenica is one of only a handful of suppliers that can deliver high assurance solutions.
How can a SecuriVPN system be used?
SecuriVPN is a highly flexible IP-based system that can be set up as anything from the simplest P2P connection to a comprehensive system consisting of hundreds of VPN devices with centralised administration and key servers for remote distribution of encryption keys.
All devices can be connected using either electrical or optical interfaces, and it is possible to customise a device’s configuration for communication over radio and satellite links.
What makes SecuriVPN a secure system?
SecuriVPN has a wide range of built-in security features. Some of these are:
- Hardware-based encryption with hardware separation between domains
- Quantum-safe symmetrical encryption algorithms
- Frequent and automatic change of encryption keys
- Replay protection
- Active and passive tamper protection
Contact Advenica for further information.
Are high availability and redundancy possible?
Yes, SecuriVPN has several network-based features that enable high availability and redundancy.
Redundant central administration means that multiple administrative sites are active at the same time. Should one site fail, full functionality will still be available.
Failover is a feature where two VPN devices are connected in parallel. One device is active and handles all communication while the other is passive and waits to take over if the active device fails.
Parallel devices make it possible to increase bandwidth by placing up to 10 VPN devices in parallel.
Redundant tunnels allow a VPN device to connect to a given network via two different tunnels. Configuration determines which tunnel is normally used. If problems occur with the designated tunnel, the other, redundant tunnel will be used.
To ensure continuous operation, the different encryption models of the system can be equipped with redundant power supply.
Do you control your production, including all components?
Advenica offers cybersecurity solutions that meet the highest security requirements. Our product development differs in many ways from traditional development as our customers demand that we can show that our solutions offer security with a high level of assurance. This can only be achieved if all work can be reviewed and evaluated. We therefore develop and manufacture the vital parts of our solutions in-house to ensure the highest level of security (high assurance). For our Security Gateway, this means that we use hardware that we have checked and in the case of software, we check and verify it so that we can take full responsibility for it throughout its life cycle. We ensure IT security, protection of development and production environments, perimeter security in the premises and access to a reliable, security-cleared and security-aware workforce. We design the products so that as few components as possible are vital from a security perspective and that these parts can be assembled and delivered under our own control. We carry out the configuration and final inspection ourselves on our premises with our own staff and under strict supervision.