Trusted Computing
Trusted Computing and Information Sharing
CDS is an established and proven provider of cross domain solutions, including those defined by the Unified Cross Domain Management Office (UCDMO) as access solutions (thin clients and workstations) and transfer solutions (guards). With 7+ years company experience and 50+ years combined staff experience, CDS personnel has worked on both the manufacturer and customer sides of the business. From point solutions to enterprise deployments, CDS has the business and technology expertise to help you research, define, acquire and implement cross domain solutions that meet and exceed your requirements.
Key Trusted Technologies Include:
Trusted Operating Systems
Access Solutions - Thin Client
Transfer Solutions - Guards
Database Solutions
TCS Trusted Thin Client
The TCS Trusted Thin Client (TTC) makes use of a high assurance operating system (RedHat Enterprise Linux 5) and applications from Trusted Computer Solutions which are then layered upon commercial Intel and AMD based computer hardware. When combined, these components present the data owner and security manager with a thin client architecture that provides secure, predictable, and easy to use access to cross domain information and secure information sharing. The TTC allows disparate networks to be connected through a trusted electronic interface, yet completely prevents information transfer between security domains. This eliminates the need for end users to have a separate workstation at their desk for every secure network. Users are able to access all appropriate networks through one thin client -- one pane of glass. In effect, TTC virtualizes multiple desktops thereby saving equipment, maintenance and administrative costs.
CDS thin client solutions all provide standard user functionality, including:
DoDIIS Trusted Workstation (DTW)
The DTW is the most mature cross domain thin client solution in existence today. The DTW thin client architecture and underlying software is in its fourth major release and development of new features and enhancements continues. The combination of product integration, security lock downs, and configuration management is the most mature and wide spread use of cross domain thin client in the DoD today. Unlike many other “solutions” on the market today, the DTW Baseline and suggested hardware architecture is established and proven throughout DIA and DoD commands to include Unified and Combatant Commands.
The DTW baseline software has been certified and accredited at the TSABI level for connectivity from JWICS down to SIPRnet and Coalition. In special configurations DIA has also accredited connectivity to the NIPRnet. The combination of locked down ultra thin clients (no external media access without explicit permission), trusted operating system and additional operating system hardening have produced the one of most secure cross domain solution sets that is commercially available today. The security measures and performance of the DTW Baseline is so well known that, under certain circumstances, commands have been able to take advantage of the DTW type accreditation and use a short form SSAA to process the accreditation.
The maturity and previously accredited status of the DTW can, if managed appropriately, reduce the time to achieve authority to operate approval. The hardware and software in the solution set is well known and we know that it works. Creating a new trusted thin client implementation is possible but the certification and accreditation time will be longer then necessary. The fastest path to operational success is via previously accredited and proven solutions that have large user community and supporting body of IT experts working its functionality and enhancement on a daily basis, e.g., ARFL’s DTW PMO.
CDS TWS-i
The CDS TWS-i™ dovetails with existing secure networks and systems at any facility, acting as a 'front end' or 'gateway' through which the secure networks can be reached. This 'front end' is a Sun Microsystems server running Trusted Solaris, an EAL-4 certified operating system, Trusted Computing Solutions Trusted Workstation-thin client, and the SunRay Session Server application. This server is physically connected to each secure network. Each user connects to this 'front end' server using a SunRay thin client. With no memory or hard drive of any kind, the SunRay thin client is perfect from a security standpoint; all information remains on the servers in the data center where it can be backed up and controlled.
The CDS TWS-i™ is a 'win-win' solution. Users are no longer burdened with multiple workstations and monitors; they can do all their work on one screen. Security officers have complete control over information transfer, with full auditing-- among other features, and no longer have to worry about removable media or the security of remote workstations. Network staff no longer have to support hundreds of remote workstations with hardware failures, OS and application upgrades, and virus scanning. The reduction in total cost of ownership (TCO) can be dramatic--the savings in administration, maintenance, cabling, cooling and power costs are proven and measurable.
The Many Benefits of CDS Cross Domain Access Solutions
CDS Cross Domain solutions make use of high assurance operating systems and applications layered upon commercial computer hardware. When combined, these components present the data owner and security manager with systems that are predictable, repeatable and easy to use for cross domain information access and secure sharing. Some benefits include:
Hardware cost savings
CDS access solutions save money up front in hardware alone, by replacing several PCs at each desk with a single inexpensive stateless device. It is completely compatible with your existing Ethernet network and desktop monitors. Since new network connections are only needed to the data center, versus each desk, cabling cost savings are achieved whenever a new network connection is implemented.
Administration cost savings
CDS access solutions save money over the long term with centralized administration. All administration is done through Trusted Solaris™ and TCS SecureOffice® Trusted Workstation - Thin Client™ software on the central server, instead of having to track service packs, security patches, and application updates across dozens or hundreds of individual PC workstations.
Increased flexibility
With CDS access solutions, user privileges can be changed, users added and removed, and entire new networks added, in minutes--all with graphical administration tools. No longer must the building be completely rewired to accommodate new secure networks.
Enhanced security
CDS access solutions provide the security administrator total control over security privileges, from restricting the flow of information between classification levels all the way down to setting privileges on individual files. CDS software selections provide audit trail, management, and search facilities, while the trusted operating systems maintain the integrity of the system itself.
Increased productivity
CDS access solutions require minimal user training. Users are presented with a familiar Windows desktop, and work on a single thin client device. Since there is only one thin client and not several different workstations, a user can move freely from one thin client to another.
Complete compatibility
Because CDSolutions employ Citrix ICA and RDP, nearly all user applications that run on Solaris or Windows will run without modification.
Increased reliability
Because CDSolutions are built around a robust central server with redundant components and centralized backup, the reliability of the entire network is greatly increased. And on the desktop, the thin client is a completely stateless device with no moving parts. Should it fail, it can be replaced. An end user can return to work a matter of seconds.
For more information about manufacturer's please visit the CDS Partner Page