High Assurance Security: Resource Center
Building on Intel’s deep experience with large-scale government deployments, Intel® Expressway Service Gateway has been engineered to take advantage of Intel hardware optimizations to deliver best in class performance and hardened, high-assurance security.
Why You Need High Assurance Security?
You’ve received the directive or regulatory requirement to share sensitive information, Web Services, and applications outside your firewall to other agencies or partners. When you expose this infrastructure, you must utilize a “next generation” secure computing platform that has attained the highest level security certifications and performance standards for each layer of security. Intel Expressway Service Gateway is the only XML security gateway that has achieved both top flight certifications and delivered proven high scale performance in production field deployments.
The Intel Expressway Service Gateway is particularly valuable to highly regulated industries such as federal government, military, healthcare, and financial sectors. Using a codeless drag-and-drop interface architects can easily enforce SOA and API Security, project federated authentication tied to on premise identity infrastructure, and provide service mediation capabilities that span outside security domains, including cloud based environments.
Intel has equipped the gateway with an array of high assurance security controls…from Trusted Platform Modules (TPMs) and Hardware Security Modules (HSMs) for secure key storage, to root CA authentication with DoD PKI infrastructure. Cryptographic hardware has been certified to FIPS140-2 Level 3 standards and the entire unit has been DoD STIG vulnerability tested. Finally, the gateway’s Common Criteria EAL L4+ certification proves adherence to top-flight security protection profiles as defined by the US National Information Assurance Partnership (NIAP).
High Assurance Features:
Tamper Resistant Appliance Form Factor
- Physical Tripwire
- Secure Boot and BIOS
- Snooping protection
- Data Confidentiality
- Tamper Resistant
Hardware Security Module (HSM)
- Secure cryptographic boundary and PKI key storage safe from attacker access
- High performance Cavium crypto acceleration board
Manufacturing Standards
- Follows Guidelines for Software and Hardware (TCX and TCG)
Webinar: Architecting the Ultimate Control Point for Cybersecurity
Webinar: NIEM Enablement in 60 Days
Additional Information
White Paper: Federal Cloud Security Challenges and Solutions
For more complete information about compiler optimizations, see our Optimization Notice.