All those whose lives are not worth living without a computer are familiar with the problem: what to do when sensitive, confidential information must be transferred over the computer network. Can one be sure it will reach its destination securely? Is discretion possible when using a computer?
Elementrix Technologies is presently developing a security device known as SDP (Secure Data Pipeline) which, its managers claim, can solve computer communications security problems in major organisations in an Intranet framework.
The new system enables any organisation to secure the information passing from one computer to another, and also to protect itself from hackers and other break-ins. According to general manager Hanan Friedman, security is almost absolute, both within the Intranet and outside the organisation.
"Our technology is simple and cheap. It can be installed in all the organisation’s computers by a single operation", says Friedman. "Maintenance emanates from a single point, namely the network manager’s station or the computer department manager’s station; and it is fully transparent to the user. The user doesn’t need to know anything, he doesn’t even need to know the system is installed in his terminal".
SDP is based on a security mechanism that comprises an encoding system, an identifying and verifying system and an electronic signing device.
The encoding system is based on DES standard, and an automatic key management system. The identification and verification system is based on a technology developed by the company. The signing system is based on the MD5 algorithm, already existing in the market, which ensures information integrity.
All three elements are contained in a control and management system that is able to supervise and manage the entire system in all the organisation’s computers. According to Elementrix’ managers, this is the heart and the unique feature of the system.
This is how it works: the computer department manager or the web-master installs the security system, which is to say, the software package, in the organisation’s server computer. The software algorithm is designed to draw the entire list of users from within the server, and present it on the display. The operator decides which computers are to have information security, and marks them. Thereupon, the security system will automatically be installed in all the computers so marked.
The new invention has two important advantages: access to the computer takes place via one secured computer only, namely a licensed SDP computer, and all input and output must be approved by the web-master or the user.
The system also enables the web-master to control all secured computers in order to increase internal security and management control of information flowing through the network. The operator can, at any given moment, see, on his display, what computers are in communication.
Friedman maintains that his system is cheaper than existing systems used by big systems. The SDP system can be installed in a company with 250 secured points, at a cost of $15,000 compared to $25,000 for existing systems. Also, in the SDP system, maintenance and control is operated by the existing team and no extra jobs need to be added.
The system is at the beta stage, and company managers assess that it will be on the market in the last quarter of 1997. The company also intends to sign OEM agreements with existing companies, so that the company’s products will be marketed within existing systems under the brand of the selling company.
The company’s commercial success depends not only on technology but also, mainly, on marketing. A software package of this type, however, appears relatively easy to market. After all, who does not need information security?