Attention: the NIAPC web site may not include all approved products.The list of approved products is always changing; there is a backlog of approved products still to be added to this information portal, and there are delays in responding to queries and inclusion of new products. NATO is reviewing options to improve collaboration and provide more timely information sharing of approved security products.
Prim'X ZoneCentral 6.2 and Q2021.1


ZoneCentral is the new-generation corporate security product that is easy to deploy, automatic for the administrator and transparent for the user. This solution, which offers high-grade security levels, encrypts data so that only authorised and identified users are able to access them. All this is free of any constraints in terms of organisation: ZoneCentral protects files and folders wherever they may be stored. It encrypts the swap file and deletes the temporary files by wiping.

Stand-out functions

Encryption

• "In-place" and “on-the-fly” encryption
• Encrypted e-mails and containers for secure exchanges
• Encryption of the browser cache (intranet protection) and of the swap file (virtual memory)
• Possibility to encrypt the user profile (My Computer, Desktop, etc.), including when roaming
• Encryption management on portable devices (memory sticks, external HDDs, etc.)

Encryption security


• Cryptographic engine operating in kernel mode to reduce exposure to spywares
• Keyboard driver preventing the keylogging of confidential codes
• Signed administration settings (policies)
• Corporate recovery mechanism
• User backup mechanism
• Automatic and secure deletion of files (wiping)

Encryption on-the-fly, transparent for users

The user accesses files as usual with nothing particular to do and without perceiving any difference between the processing of encrypted files and of unencrypted files. Users need to provide an access key only once during their work session, to enable the decryption of the encrypted files that they wish to access.
Permanent and automatic protection
The data security plan is determined by the company's security managers. This plan is then applied automatically and systematically by ZoneCentral, with nothing to be done on the part of the users. The files are permanently encrypted (there are no unencrypted copies at any given time).

Unchanged data organisation

The files are encrypted "in-place", wherever they happen to be stored, whether on a workstation or on a data server. ZoneCentral requires no change in the way that data are organised.
Secure collaborative workspaces and network traffic
ZoneCentral encrypts/decrypt files as and when they are used, on the workstation, in the memory. This means that, whether accessing files on a server via the company LAN or else while roaming, all data will transit in encrypted form.
Furthermore, in a collaborative workspace, only users with the appropriate access rights will be able to read the content of shared files.

User access keys

To access encrypted zones, ZoneCentral users the authentication resources already present in the enterprise: passwords, key files (.p12, .pfx), USB memory sticks or tokens (from the main manufacturers), CSP containers or other mechanisms.
This makes ZoneCentral compatible with the standard market PKIs (although their use is not mandatory).
Encrypted e-mails and file attachments
ZoneCentral ships an e-mail encryption service and a complementary service for encrypted containers. Users are able to exchange information with other people, who may or may not be equipped with ZoneCentral. The exchanges may use (shared) passwords or certificates.

Compatibility and cooperation with Cryhod

ZoneCentral is compatible and cooperative with Cryhod for the encryption of disks/partitions with pre-boot authentication.
Flexibility and ease of deployment
The installation of ZoneCentral on workstations is compatible with the administered installation tools (SMS et al.).
The security rules and settings applicable to fixed or portable workstations, shared zones on the network and portable devices are defined by the Administrator using the Windows Security Strategies (Policies). These rules are applied automatically and in real-time by
Windows on all devices.

Operation and supervision

With the ZoneBoard console, the security administrator can manage quite simply from his workstation the need-to-know rights for the encrypted zones and shares. ZoneBoard, an application integrated within ZoneCentral, does not require the use of a server.
Data also remain encrypted vis-à-vis the network administrator
Thanks to the "in-place" encryption, there is no change to the way in which resources are processed and administered. Process operators have no access to the data content, which makes ZoneCentral an important component of any outsourcing project.
Even backups can be made in encrypted form, thereby ensuring the lasting confidentiality of sensitive information.

 

Product Images

NATO Classification

NATO RESTRICTED

Product Categories

Security Mechanism Groups

General Information

Manufacturer

Prim'X
Country

France

Product Documents

Icon Product Sheet
Type: Product Sheet
505.57 KB

Product QR Code

Last Update Time:
30-Jul-2024 01:17 PM
Please enter a search term !