LX Technologies, Inc.                                                                                                                                                                        contact us
 

SafeCryptNet Module




Introduction

SafeCryptNet™ is a proven software process for protecting data from unauthorized use or manipulation.   SafeCryptNet™ is designed for establishing and maintaining an on-the-fly-encrypted volume data storage and/or database control on fields specified for encryption.   

In the world of data security encryption has become a common term and everyone is utilizing it in some capacity so what makes SafeCryptNet different?   The answer is simple; encryption is commonly used to protect data in transmit and/or data in storage but the live data on your hard drive is in plain text making it vulnerable to cyber attack.   With SafeCryptNet™ “live” data is encrypted drastically reducing the risk of sensitive information being released to hackers.  In addition, when accessing a database encrypted with SafeCryptNet™ it is only necessary to decrypt the information you are needing to view leaving the remaining sensitive information encrypted. 

SafeCryptNet is embedded in all LX product lines and now is available to developers.  As a developer you can secure any or all parts of a database with one key or a key for individual fields or groups of fields.  On-the-fly encryption means that data is automatically encrypted or decrypted right before it is loaded or saved, without any user intervention.  The SafeCryptNet DLL allows you to enable your product to use On-the-Fly encryption or field by field encryption within the same database.

SafeCryptNet™ Features

 

  • SafeCryptNet™ encrypts and decrypts individual data base fields within a record of a file while keeping the rest of the database encrypted.
  • SafeCryptNet™ also changes the concept of redundancy, with SafeCryptNet™ “redundancy” is expanded to an unlimited number of servers on the secure network, utilizing a method for sharing process control of a system.
  • Data stored on the hard drive is encrypted.
  • Utilizes both private and public keys (FIPS 140-2 protocol)
  • Fast access. Additional time is estimated to be less then 20 milliseconds per encryption/decryption
  • Can be implemented into existing software and/or operating systems.
  • Companies can integrate SafeCryptNet™ into their own software, utilizing the SafeCryptNet™ DLL libraries to encrypt all network data files

SafeCryptNet complies with the following standards, specifications, and recommendations:

  • FIPS 197
  • FIPS 198
  • FIPS 180-2
  • ISO/IEC 10118-3:2004
  • FIPS 140-2

Supported Operating Systems
SafeCryptNet currently supports the following operating systems:

  • Windows 7
  • Windows Vista
  • Windows Vista x64 (64-bit) Edition
  • Windows XP
  • Windows XP x64 (64-bit) Edition
  • Windows Server 2008
  • Windows Server 2008 x64 (64-bit)
  • Windows Server 2003
  • Windows Server 2003 x64 (64-bit)
                         

Encryption Algorithms

SafeCryptNet™ currently employs The Advanced Encryption Standard (AES) algorithm although the SafeCryptNet™ process is not specific to one algorithm and can be implemented with stronger algorithm’s as they become available.  

 The AES algorithm is a FIPS-approved cryptographic algorithm (Rijndael, designed by Joan Daemen and Vincent Rijmen, published in 1998) that may be used by US federal departments and agencies to cryptographically protect sensitive information. SafeCryptNet uses AES with 14 rounds and a 256-bit key (i.e., AES-256, published in 2001). 

 In June 2003, after the NSA (US National Security Agency) conducted a review
and analysis of AES, the U.S. CNSS (Committee on National Security Systems)
announced in that the design and strength of AES-256 (and AES-192) are
sufficient to protect classified information up to the Top Secret level.
This is applicable to all U.S. Government Departments or Agencies that are
considering the acquisition or use of products incorporating the Advanced
Encryption Standard (AES) to satisfy Information Assurance requirements
associated with the protection of national security systems and/or national
security information.





Ready
Microsoft Corporation. All rights reserved.