|
|
 |
 |
SPYRUS Enterprise Management System (SEMS)
Manage USB Encryption Devices Across Your Domain
The SPYRUS Enterprise Management System (SEMS) enables enterprise-wide management of USB encryption devices. From a central management point, administrators can remotely set and enforce security policies, monitor device transactions, disable and enable logon capability, and destroy the encryption keys and data on devices. Users can initialize and enable devices from any client computer connected to the SEMS domain.
SEMS coordinates central management servers with each endpoint client computer on the domain. Administrators can set and enforce security policies for each registered device and define the actions that must be performed by the SEMS client. |
|
|
SEMS creates a hardware-based chain of trust between management servers, administration servers, managed devices, and enterprise administrators. It was designed using US Government-approved, next-generation cryptographic algorithms to combat both external and internal threats to your organization's valuable data. Cryptographic operations and key storage are handled by one or more LYNKS hardware security modules, and access to the administrator console can be set to require smart-card authentication.
Each time a SEMS-managed device logs on to the SEMS domain, the SEMS client component automatically creates a secure connection to the SEMS server and determines whether or not the action is permitted. If an administrator disables a device, the SEMS client prohibits the device from logging on. The user must obtain administrator authorization to re-enable the device. Administrators can also remotely issue a "destroy" command that permanently erases all keys an data from the device and inactivates its SEMS registration.
A SEMS audit database provides administrators with records of managed device transactions such as registration, logon and logoff, and file transactions.
SEMS device policies are enforced even when SEMS-managed devices are used on non-SEMS domain computers. An offline policy defines the number of times a device can be used before it must re-establish a connection with the SEMS server. Offline policy can also tell a SEMS device to disable or destroy itself if the specified offline threshhold is exceeded.
|
SEMS-managed versions of SPYRUS devices Secure Pocket Drive, PocketVault P-384, and Hydra PC Digital Attaché, are available now.
Many devices from other vendors can also be adapted for SEMS management. Contact SPYRUS for information about the SEMS open API SDK.
| |
 |
Administrators manage devices through an easy-to-use console interface. Various screens manage devices and actions, set policies, and provide audit information. |
Features
- Single point of control for encryption device management
- Simple console interface manages devices, policies, audit information
- Devices can be remotely disabled, enabled, or destroyed
- Devices can be used outside of the domain—great for travel or home workers
- Audit database logs managed device transactions.
- Hardware-based chain of trust enforces secure server environment
- Open API for flexible device management
|
|
|
|
|
