RuUaEn ГлавнаяКонтактыКарта сайта
Эпос
HomeData recoveryInformation securityPC ProductionService{Our Solutions}
EPOS > Our solutions > TC HCI - modular local network with data protection

Семинар Computer Forensics 2010

TC HCI - modular local network with data protection

 


Fig.1:   General scheme for TC HCI

TC HCI, (Technical Complex for Handling Confidential Information), is the basis for constructing a secure network for processing confidential data. It is a special autonomous modular system developed by EPOS.

TC HCI (see fig.1) forms a segment of a secure local area network (LAN), that is protected from leakage through technical channels in accordance with the requirements of regulatory documents for technical information protection. The system is designed to create Class 2 automated systems, in which restrcited information of category 2 or 3 is processed.
 

 

 

Basically, TC HCI includes: 

  • 19" rack with the means for technical protection and suppression of electromagnetic emanation and interference;
  • Personal computers and / or servers (up to 8 pcs. in a single cabinet);
  • Active and passive local network equipment;
  • Special remote operator console (LCD monitor, keyboard, mouse with optical interfaces) designed by EPOS;
  • Remote optical consloes OCO-S and OCO-P designed by EPOS, and fiber-optic communication lines.

Optionally, workplaces can be equipped with peripheral equipment (printers, scanners). These modules can be combined into a single automated system with no restrictions as to the required number of workplaces.

The main principle of technical protection of information is based on the fact that the entire LAN segment (chassis of PCs, servers and LAN equipment) is placed in a special shielded cabinet, which protects data from leaking through TEMPEST, protects information from being destructed by an external electromagnetic influence and/or from unauthorized physical access to it.  At a user's workplace, only a secure remote console (monitor / keyboard / mouse) is installed, which connects to the chassis inside the cabinet through OCO remote optical consoles.

Under this scheme the operator at the workplace does not have physical access to the chassis installed in the cabinet. The cabinet is equipped with an alarm system and a combination lock. Data input /output from operator's workplace can be done by a removable flash drive via the USB port of the operator's console. If such data input/output must be monitored for security reasons, USB port can be placed only in the chassis in the cabinet. User authentication is carried out using a smart card which is inserted into the card reader in the operator's console.

 

Read also:

 

 

Copyright 2010 © EPOS LLC. All rigths reserved.
Material usage rights.