AEP Net
AEP Net is an independently assured encryptor that protects IP traffic across networks. AEP Net provides both data confidentiality and source authentication for network traffic enabling high confidence Virtual Private Network (VPN) communications. AEP's solution has a proven track record of protecting National and International classified networks.
- AEP Net datasheet 0.59MB
- AEP Net Remote datasheet 0.61MB
Government departments and agencies, contractors, public health, public safety and criminal justice organisations, as well as enterprise organisations, need to protect sensitive data across networks. encryption products used to protect data should provide centralised management across mixed environments, as well as have assurance and accreditation from relevant authorities that the solution will perform to its specifications.
AEP Net encryptors provide both data confidentiality and source authentication for network traffic enabling high confidence Virtual Private Network (VPN) communications.
Approved by the UK Government's CESG Assisted Products Scheme (CAPS) to Enhanced Grade level and the Ministry of Defense Infosec Products Co-Operation Group, AEP Net products meet the highest standards for a Commercial Off-the-Shelf (COTS) encryptor.
AEP Net products come complete with a sophisticated central management platform that minimises key handling and eliminates the need for any local encryptor management. AEP Net products are designed to integrate into existing networks seamlessly, complementing other network products - including AEP Net Remote, a remote access module designed specifically for organisations that require mobile and home workers to access Classified applications and data over the Internet.
Key Benefits of AEP Net IPsec VPN Security
- Enables secure networking so you can conduct unrestricted business over the internet and other open networks by protecting sensitive data to an assured standard
- Satisfies high security data separation requirements for a multitude of architectures including extranet, intranet or internet based deployments, as well as at the network interface of protected workstations
- Conforms to the chosen deployment model, due to modular design for operation and management by either the customer organisation or a managed service provider
- Removes reliance on a particular underlying WAN infrastructure due to IP encryption
- Integrates seamlessly into existing IP-based networks' infrastructures to provide VPN security
- Eliminates administration costs of routine re-keying through fully automated key management
- Maximises ROI by providing a highly scalable platform with flexible configuration options to evolve in line with business requirements
- Minimises total cost of ownership with a comprehensive and sophisticated GUI-based central management software suite
- Ensures communications continuity and disaster recovery via high availability (hot standby) architectures
- Maximises throughput via proprietary hardware acceleration, satisfying applications including encrypted VoIP and Video over IP
Key Features of AEP Net: Secure Networking with IP encryption
- 20Mbps unit (18Mbps continuous throughput with 1464 byte UDP), and a 100Mbps unit (160Mbps continuous throughput with 1464 byte UDP).
- IETF IPSEC ESP tunneling mode (modified to enhance security standards) providing packet level source identification, hiding private network structures, source IP addresses, traffic volumes and preventing attacks from public networks.
- Using industry standard protocols, Net appears as a network host on public networks and router on private networks, enabling seamless integration into existing architectures.
- Traffic may be routed across non-IP networks e.g. ATM, SMDS, Frame Relay, xDSL, ISDN, Satcom, and Radio Links using an IETF standard transport protocol.
- Uses SHA-1, DSA, Diffie-Hellman, ISAKMP, and AES or other National Government approved algorithm sets as appropriate.
PKI Key Management and Cryptographic Network Management for AEP Net
- Net includes cryptographic network management tools - A Certification Authority, for authenticity certification, and AEP Net Policy Manager for network configuration and control.
- Network managers can maintain high assurance cryptographic control of network membership (including central equipment registration and certificate revocation), and manage cryptographic Closed User Groups (CUGs).
Assurance and Certification
Following stringent evaluation, AEP Net Remote has achieved formal approval from the UK Government CESG Assisted Products Scheme at Enhanced Grade, a security rating for the protection of classified information recognised across Europe.
AEP Net is CAPS approved at Enhanced and Baseline Grade and is in FIPS 140-2 Level 4 evaluation. AEP Net Remote provides secure personal remote access communications to CESG Enhanced Grade Standard.
AEP Net has received second-party evaluation and approval by The Council of the European Union Security Committee (INFOSEC) for levels up to and including CONFIDENTIEL UE (EU Confidential).
The Net product has been in use on UK Government networks, and in Europe, since early 2001.
The product is in use on a wide range of Government networks including:
- National scale Police and Criminal Intelligence networks
- National Government Infrastructure network
- Several national infrastructure projects at ports of entry
- Several Defense projects
- 2 x Pan-European international infrastructure networks
- Pan-European Criminal Intelligence network
Deployment and Use
AEP Net is available in different models suitable for applications in:
- UK Government
- EU Government
- US Government
- High Value Financial
- Pharmaceutical
- Other commercial applications
AEP Net can be deployed as an IP Security Gateway at the network interface or at the workstation to support highly secure end-to-end or data separation requirements.
