NEXOR GUARDIAN

High assurance data guard

Nexor Guardian provides a highly secure, high-throughput content checking capability that enables the sharing of information between networks with different levels of trust for data.

A data guard reduces the risk of malware getting into a network; of sensitive data leaking out; and ensures that appropriate controls are in place for the data to be released between networks.

Nexor Guardian has been designed and developed to protect organisations by validating that data flowing between networks complies with the security policy of the protected domain. Our data guards offer parallel processing of information, with high data processing speeds and low latency, even with deep content inspection.

Guards can provide the Validate component in our Secure Information eXchange Architecture (SIXA). They ensure the content (and in some cases protocol) conforms to the security policy.

Nexor Guardian makes use of the evaluated security functionality provided by the underlying platform to ensure an automated electronic exchange can only pass from one domain to the other via a trusted path.

 The importance of data validation

The data guard, also known as the Validate component, ensures that data being transferred between networks conforms to a specified security policy. In order to do this, the Guard has to be able to provide detailed inspection of the data being transferred. The checks that a Guard could perform can be split into three categories:

• Format checks;
• Syntax checks;
• Semantic checks.

Complexity versus Assurance

Nexor Guardian makes use of the security functionality provided by the underlying platform to ensure an automated electronic exchange can only pass from one domain to the other via a trusted path.

In order to get a high degree of confidence that the Guard can perform these detailed checks, it is advisable to limit the degree of complexity of the data being transferred through the Guard. In this way, the checks can still be comprehensive, but are simpler to evaluate.

The Transform component, or Gateway, in our Secure Information eXchange Architecture (SIXA) can be used to transform more complex data into something that can be guarded with high assurance.

Dealing with non-conformant data

Non-conformant information is rejected and quarantined, preventing the potential damage caused by outbound data loss or inbound malicious content. Nexor Guardian includes an option for manual inspection and release if desired.

Nexor Guards

Nexor Guardian is a data guard providing a highly secure, high-throughput content checking capability that enables the sharing of information between networks with different levels of trust.

Nexor’s data guard is available in multiple versions, each optimised for specific business challenges. These include editions for high avaliability, tracks, chat, file transfer, web, voice, directory services and enterprise management.

Speak to us today to discuss how Nexor Guardian could best protect your organisation.

Further information

A full technical specification sheet for Nexor Guardian is available upon request.

We also recommend that you find out more about how data guards can perform the validate element in our architectural approach to secure information exchange. Our Secure Information eXchange Architecture (SIXA) is based on best practice design patterns from the National Cyber Security Centre (NCSC), the UK National Technical Authority.

For guarding email/messages we recommend Nexor Sentinel.