PORTFOLIO

The EDS Multi-Protocol Gateway is a security product, enforcing secure policy controlled transfer of information in the Government, National Infrastructure and Financial Sector networks, within a secured processing environment.

Overview
The EDS MPG is a security product, installed at system boundaries, enforcing validation and integrity of information passing between security domains. The design offers a flexible and highly configurable modular architecture, enforcing deployment-specific policy-based filtering on transactional data passing between systems.

The EDS MPG will facilitate the exchange of live information in a secured and controlled manner, supporting both specialist niche environments as well wider market opportunities. Focussed and used initially in the UK Defence marketplace, the technology seeks to support Government, National Infrastructure and Financial Sectors.

Information passes through the EDS MPG via a trusted Data Validation Pipeline (DVP), an EDS software component which enforces validation processing on all information passing through each of its configured modules. A pluggable architecture has been adopted within the DVP, allowing both the installation and configuration of validation modules to be tailored on a per deployment basis, including the use of anti-virus and content verification components. Custom components can be introduced to the architecture, supporting payment services and data centre transactions.

The DVP has been designed around a hostile environment, and addresses a number of key security objectives. The product has been accepted into the United Kingdom Common Criteria Evaluation Scheme for evaluation to EAL4 product certification.

The MPG is offered as a multi-box solution, providing separation of policy validation functions from protocol-enabling services via the use of a TCP/IP network break. The modularised solution permits and enforces uni-directional or bi-directional flow (and processing) of information.

Security
The MPG design is based on using HMG and commercial best practice, and aligns with CESG memorandums and advice. The security design encapsulates:

• An IP Break (Network Break), provided by a custom protocol component within the DVP breaking end-to-end TCP/IP.
• Data Normalisation (Protocol Break) from the native protocol to a custom extensible MPG XML schema.
• Internal data signing and verification of transactions passing through the MPG, offering data integrity.
• Assurance that every transaction has been validated by each security check.
• Secure key protection using tamper resistant FIPS 140-2 Level 3 Hardware Security Modules, using approved encryption and signing techniques.
• Custom MPG Security Lockdown, applicable to both hardware and software.
• Use of COTS products to enhance system security of hardware, system accounts, ports, system files, memory.
• Full auditing of all processing and movement of information through the pipeline.
• Protection against attack via privilege escalation.
• Protection against attack via buffer overflows, execution of unauthorised code, stack pointer manipulation.
• Authorised modifications of transactions, controlled through the DVP components.

EDS Data Validation Modules
The DVP consists of a pluggable Data Validation Module architecture, offering validation checks on transactions passing through the MPG. Each DVP contains a tailored set of DVMs per deployment, which currently includes (but not limited to):

• Virus scanning using integrated COTS products (McAfee and E-Trust currently supported).
• Content Verification filtering of all attachments, including file analysis and white/black list support at a domain level, using EDS' Content Verification Suite.

• Dominance checking of transaction originators and recipients, including cleared to send/receive, support for clearances hosted in directory services.
• Label Mapping between supported policies, plus support for multiple label locations.
• Address Mapping of transaction originator and recipient addresses.
• Custom-designed validation module functionality for specific deployment needs.