Thales e-Security solutions for electronic payments and transactions

At Infosecurity Europe 2005 today, Thales UK unveiled the new Datacryptor® AP (Advanced Performance) wire-speed 10Mbps IP Network Encryptor. This entry-level solution addresses the needs of public and private organisations that require a cost-effective solution providing the highest level of security for their IP data communications today with the flexibility to meet their bandwidth demands in the future through its unique 100Mbps upgrade path.

This is the latest product in Thales UK's state-of-the-art Datacryptor AP family, joining the 100Mbps IP and E3/T3 Link encryptors announced last year. The Datacryptor AP family offers the strongest encryption technology available in a commercial off-the-shelf (COTS) product, offering Triple DES (168-bit key), Rijndael AES (128, 192, or 256-bit key) or UK Government algorithms as standard, and the ability to accept other customised/national algorithms utilising Field Programmable Gate Array (FPGA) technology. Unlike traditional ASIC-based encryptors, the use of FPGAs allows loading of a cryptographic algorithm into the gate array, thus achieving hardware speeds with software-like flexibility. This approach requires no hardware replacement and permits easy migration between algorithms. In addition, the Datacryptor AP employs X.509 certificates for authentication, and Diffie-Hellman a utomatic key exchange, thereby ensuring minimal manual intervention once commissioned .

Following Thales UK's reputation for building robust cryptographic products, the new 10Mbps IP device uses a tamper-evident 19-inch rack mountable metal enclosure with internal PSU. Inside, the cryptographic envelope is sealed within a tamper-resistant module. Any attempt to penetrate this module erases the algorithms and keys. As a stand-alone encryptor, the device also addresses the important need for separation between network administration and security management. Continuing Thales UK's strategy of producing independently-certified information assurance solutions for government and industry , the 10 Mbps Datacryptor AP is designed in compliance with FIPS 140-2 Level 3 and international Common Criteria Evaluation Assurance Level 4 (EAL4), and has been approved under the CESG Assisted Products Scheme (CAPS) at Enhanced Grade to protect information classified up to UK SECRET. (CESG is the information assurance arm of GCHQ that is responsible for evaluating and approving cryptographic security products for use by the UK Government.)

The new encryptor facilitates demanding quality of service (QoS) applications like voice over IP (VoIP) . By utilising the established Datacryptor Element Manager management software, existing users benefit from a solution that is backwards compatible with the rest of the Datacryptor family, and therefore provides centralised monitoring together with secure control of a diverse range of encryptors. This not only eliminates the need for multiple management systems, but also reduces customers' deployment and training costs. Simple Network Management Protocol (SNMP) is also supported for convenient enterprise-wide monitoring capability.

James Kilazoglou, VP & Managing Director of the e-Security activities of Thales said: “The market for IP wide area networking has greatly increased in recent years. However, the savings that can be realised by using shared IP infrastructures is also accompanied by an increase in the risk of network intrusions. Driven by the growing threats to the security of sensitive information in transit, customers of all sizes are becoming more and more concerned over the confidentiality, integrity, and reliability of the services they employ. As users increasingly demand security without impacting performance requirements, the 10Mbps Datacryptor AP meets this challenge head on.”

About Thales UK
Thales UK is an international electronics and systems group, serving defence, aerospace, services and security markets. Thales UK employs 11,000 people and generated revenues of £1.1 billion in 2004.

Operating in three main markets covering e-security, card payment and network security, Thales' e-Security activities address the business, government and finance industries' need for cryptographic security products and solutions. Over half of the world's banks, together with the majority of the busiest exchanges, currently use Thales technology. For more than 20 years the company has been at the forefront of security and payment technology, co-operating and contributing to set the industry standards used for financial transactions and e-commerce globally. Thales e-Security activities offer a wide range of security solutions to protect Government and Defence critical information infrastructures, thereby positioning the company as a leading worldwide supplier of certified network security products.

Thales Media Contact
Kenneth McGilvary
Hotwire
+44 (0) 20 7608 4633
Kenneth.mcgilvary@hotwirepr.com

Claire Topping
Thales e-Security
+44 (0)1844 204156
Claire.topping@thales-esecurity.com