Net Remote: Highly Secure Remote Connectivity
 The AEP Net Remote extends the security, functions and features of AEP Net into the remote access domain. Like its big brother the AEP Net Remote provides both data confidentiality and source authentication for IP network traffic.
Features
- Offers up to 10Mbps throughput (1464 byte UDP) and employing a modified version of the IETF IPSEC ESP tunneling protocol.
- Encryption is at the IP layer offering an RJ45 network interface for onward connection to Internet router/modems or other network connections.
- Connects remote access PCs or Laptops onto to host networks or an AEP NET encrypted network via a Net hub encryptor.
- Enables flexible network architectures, providing a wide range of remote access security solutions.
- Net hubs can support up to 1000 Net remote units.
- Employs the same cryptographic network management tools as the Net VPN product (see AEP Net above); both remote access and network security gateway configurations can be managed from the same management station.
- Allows network managers to maintain high assurance cryptographic control of network membership (including central equipment registration and certificate revocation), and to manage Communities Of Interest (COIs).
IPSEC ESP tunneling mode has a 36 byte overhead. This must be taken into account in equipment configuration.
Assurance and Certification
Following stringent evaluation,AEP Net Remote has achieved formal approval from the UK Government CESG Assisted Products Scheme at Enhanced Grade, a security rating for the protection of classified information recognized across Europe.
- AEP Net is CAPS approved at Enhanced and Baseline Grade and is in FIPS 140-2 Level 4 evaluation. AEP Net Remote provides secure personal remote access communications to CESG Enhanced Grade Standard.
- The Net product has been in use on UK Government networks, and in Europe, since early 2001.
- The product is in use on a wide range of Government networks including:
- National scale Police and Criminal Intelligence networks
- National Government Infrastructure network
- Several national infrastructure projects at ports of entry
- Several Defense projects
- 2 x Pan-European international infrastructure networks
- Pan-European Criminal Intelligence network
Deployment and Use
AEP Net and Net Remote are primarily used for backbone (point-to-point) network and remote access communications security, however as encryption is performed at the IP layer the products can be used to build very flexible solutions for Public Sector projects. AEP Net is also designed to provide data separation and reverse tunneling.
Examples of different applications include:
- Data separation between different protective markings over high-grade circuits (including compartments and caveats).
- Voice over IP (Net is being used on a classified pan European network for VoIP today)
- Mobile laboratories / incident rooms
- Protection CCTV or other remote sensing data
- Formal separation between different data strands over a common circuit to overcome need-to-know and data ownership issues.
For more information, download the Net Remote datasheet (PDF 875KB).
|
