CrystalShield. by Sensis Corporation

Single-point security solutions often cover only some aspects of your enterprise data, leaving gaping holes in your network infrastructure. Administrators cannot rely on a single auditing tool to monitor the flow of data across an entire enterprise. End-users need to be trained in using different software interfaces as each tool requires its own set of credentials, leading to a virtual inflation of passwords and access policies. At the end of the day, the mission of your company is to focus on its customers, to collaborate on ideas, and to connect the members of your teams. You need a tool that facilitates the free flow of ideas across your network, while keeping your ideas under lock and key – with no unnecessary hassles. That is why your organization needs an all-encompassing turnkey solution: CrystalShield, the data-centric security framework that helps you go on the offense in securing your data and provides you with collaborative tools to facilitate your team’s work, while protecting every atom of information on your network.

As enterprise networks grow and security threats increase, it is essential to be proactive, not just reactive when it comes to the safety of your organization’s sensitive data and the integrity of your network infrastructure. It is crucial to stop would-be intruders before they ever manage to enter any point in your network.

CrystalShield is a seamless and comprehensive security framework and monitoring solution that offers you true single sign-on and allows you to control access to your resources down to every atom of data and across your entire data stream to fend off attacks from outsiders and insiders. CrystalShield is both a powerful security architecture and an agile solution that builds on your existing technology. CrystalShield is interoperable with your databases and your platforms. CrystalShield provides your enterprise with a broad safety umbrella that covers all points of your enterprise -- accessible with one set of security and access credentials, maximizing the efficiencies of a sole point of entry while reducing the total cost of ownership.

CrystalShield establishes access policy and user role controls that can be narrowed down to the lowest level of granularity: individuals, user groups, types of information sources, specific data-items -- even a single phrase, sentence, or string -- can be shielded at the discretion of the security administrator -- across one domain or all domains.

CrystalShield can be tailored to your specific needs. It can be configured for any size of deployment, and offers maximum scalability as your enterprise grows and usage increases -- from a single domain to multiple domains, with a single security policy or across domains having different security policies. And with the help of the optional CrystalShield API Developer Toolkit, organizations that prefer to design their own interfaces can customize the architecture even more.

CrystalShield creates virtual location-transparent connections between users and any information they access, requesting the data on behalf of the user without actually granting a direct connection to the asset itself.

No precise coordinates of the resource itself on the network are ever revealed, closing a potentially significant loophole by not disclosing specific points within the network.

One Domain, All Domains - United Virtually: CrystalShield enforces access control whether the data rests in a single domain or spans across multiple ones.

If a user is permitted to read a particular type of information that happens to be spread across different servers, the pieces will be unified in one virtual location, bearing no traces and granting no access to the physical locales on the network.

CrystalShield empowers your team’s work with collaborative tools that help your data move across disparate points on your network: databases and file servers are virtually united under one roof and in one common workspace.

With a few simple clicks, administrators set access policies and delegate resources to individual users.

Users, in turn, simply open their workspaces, and, via the CrystalShield Xplorer, they see all of the data they are allowed to access right in front of them -- without having to navigate a maze of codes, PINs, or passwords.

As soon as they have been cleared by CrystalShield, users can focus on what they want to accomplish, leaving the integrity of their data in the safe hands of CrystalShield’s ground-breaking technology.

And, with Secure Chat, users and administrators can exchange and share their ideas with all their collaborators, whether they are in the next cube or an ocean away.

That is why your organization needs an all-encompassing turnkey solution: CrystalShield, the data-centric security framework that helps you go on the offense in securing your data and provides you with collaborative tools to facilitate your team’s work, while protecting every atom of information on your network.

Any communication between network points in a CrystalShield-protected architecture is subject to bi-directional authentication. CrystalShield's patent-pending algorithm tracks each token -- back from the recipient to the sender to verify that transmissions are truly between two points in the network and have not been intercepted by an unauthorized 3rd party.

Dual-Layer Tokens Traced Back to the Transmitters

For every user, CrystalShield’s Xplorer creates an individual and virtual network resource view, a virtual space that displays only those assets to which a user has been granted access. Meanwhile, CrystalShield maintains exclusive control over access to all core back-end resources that it protects, monitoring each transaction, whether they originate from a terminal or a hand-held device, in real-time, allowing administrators to trace back any transaction to its point of origin.

Virtual User Space Patrolled by the Real-Time Monitoring Squad

CrystalShield provides dynamic, secure peer-to-peer connectivity for data transfers across domain boundaries. Without exposing any subnet nodes, CrystalShield creates a secure one-time tunnel and destroys it immediately after the data has been transmitted, so the potential for eavesdropping and traffic analysis is eliminated.

Secure, Restricted Inter-Domain Communication

CrystalShield enables the owner of any data target to maintain permanent control over its resources, even after access has been granted to other users. If the underlying security policy changes, CrystalShield will destroy the pertinent certificates and immediately withdraw any outstanding permissions granted.

Data Owner Retaining Permanent Control

Over Resources

Sensis Corporation, headquartered in East Syracuse, NY and with offices all over the globe, has been a leader in providing cutting-edge technology for over 20 years.

From air defense and air traffic systems to information security products, Sensis has been at the forefront of innovation and ingenuity, solving challenging operational problems and helping save lives in both the civilian and military sectors.

Our product lines have been deployed in over 25 countries the world over. Our dedicated consulting and maintenance operations provide 24/7/365 support.