Data Access and Exchange in a Controlled Manner
INFODAS’ Secure Domain Transition (SDoT) Labelling Service has received approval for use up to Secret level for NATO-compliant data classification solutions by the German Federal Office of Information Security (BSI), the company announced in early September.
As a leader in cross-domain solution technology, INFODAS continues to provide innovative high-end security hardware and software solutions for mission-critical environments in the public sector and critical infrastructure. Following a seven-year in-depth assessment, BSI has granted approval for the Labelling Service at German, NATO and EU security levels up to Secret. SDoT products allow users to make data available or to exchange it in a controlled manner, while sensitive data remains protected.
Public sector organizations that handle classified information and seek to take advantage of digitization frequently wish to selectively share sensitive data with other systems, organizations or allies in real time. However, many unstructured data objects (pictures, videos, patient records, documents) require another trusted element for release decision as their classification level could easily be changed.
The SDoT Labelling Service solves this issue. It allows manual or automatic classification of any data object with a tamper proof XML security label that is cryptographically bound to a file. The product complements the bi-directional SDoT Security Gateway cross-domain solution for Secret and below domains, so that even unstructured data can be filtered. The SDoT Labelling Service is placed in the classified IT infrastructure and can be integrated in any work environment (Microsoft Outlook, Word, Excel) operated by the user, which ensures a high degree of user adoption and data-centric security. Alternatively, INFODAS offers the SDoT Workstation, a hardened laptop with a data classification application.
XML security labels can be freely defined by an organization and may include categories such as the creator of a label, permissive and restrictive sharing policies or label validity. Any changes to a label are always logged throughout its lifecycle. Even the smallest change to a data object automatically leads to invalidation of a label that prevents its release from a classified domain. The XML security labels already adhere to the STANAG 4774 for confidentiality labels as well as 4778 for metadata binding.
The SDoT Labelling is designed and manufactured in Germany following the security-by-design principle. It has the same high-end security software and hardware architecture as the SDoT Diode, SDoT Security Gateway and SDoT Security Gateway Express. The INFODAS SDoT product family currently offers the most comprehensive government-evaluated cross-domain solutions on the market for network security and data leakage prevention. For the past 10 years, SDoT products have been used in the toughest global mission-critical environments.