Time Tested Cybersecurity
Blue Ridge Networks BorderGuard solution is built on a decade and a half of offering the best combination of security, performance, reliability, and price in the industry.
BorderGuard systems have been deployed around the world in support of the most demanding secure communications applications without a known security breach. In addition to proven security, BorderGuard protection is known for reliability - enhanced by total path redundancy and automatic failover for peace of mind.
BorderGuard System Features
- Layer-2 Session Isolation
- Pre-place Public Key (PPPK) Two-Factor Authentication
- DoD PKI / Standards Based Authentication - X.509, OCSP, CRL
- Hardware Accelerated AES Encryption
- Extended RSA Keys - 2048 and 4096
- Built -in PKI
- IEEE 802.1Q VLAN Support
- Interoperable with DoD JITC PKI
- Communications Media and Protocol Agnostic – wire, wireless, satellite
- HSPD-12 Compliant
- PKCS#11 Smart-Card Compatible
- Red List Revocation Capability
- Supports Green List Custom Groups
- Dynamic Updates to End-Point Security Policies
- Supports EdgeGuard Remote Access Solutions
- Securely Connects RemoteLinks at Remote Offices and Mobile Sites
- Central Management using BorderGuard Management Console
High Assurance Security
BorderGuard forwards only packets from external connections to inside ports that have been cryptographically authenticated. Conversely, the only packets that leave a BorderGuard are those that are encrypted and sent to an authenticated destination. BorderGuard does not respond to unauthenticated sources.
Strong two-factor authentication scales to meet the escalating needs of the organization and offers a higher level of security than password-only systems while maintaining user convenience. Each BorderGuard has a unique RSA public key digital certificate-based identity, and must mutually authenticate using these certificates. Session authentication using passwords or a “shared secret” is not secure and, therefore, not supported by BorderGuard. Our method of mandatory, mutual authentication eliminates the possibility of an attacker entering network sessions via identity spoofing or a man-in-the-middle attack.
Over the years, BorderGuard systems have earned numerous certifications and equipment validations, including JITC, TIC, Common Criteria, FIPS 140-2, HIPAA, and DoD SPOCK for use in highly controlled environments.
Interoperable and Flexible
The versatile BorderGuard includes its own built-in PKI, but it can also leverage your existing public key infrastructure (PKI), including X.509 certificate authorities as well as OCSP and CRL checking. Administrators are relieved of the tedious task of manually configuring certificate authority hierarchies by the BorderGuard system’s automatic certificate path discovery and path validation mechanisms.
Supporting geographically and technologically diverse organizations has never been easier. BorderGuard systems are ready to deploy with minimal setup tasks, and multiple systems can be grouped to support load spreading options as well as fault tolerant configurations. The fault tolerant options allow BorderGuard to support a variety of geographically separated solutions for high availability and business continuity.
To meet the rising demand for wireless devices, Blue Ridge has extended its proven security architecture to all of its remote access offerings allowing seamless roaming that maintains tunnel connectivity across any communications media (wired, wireless, satellite, etc) and is protocol agnostic.