SDoT
Labeling Service.
Application-independent data classification!
As the digitalization of authorities, the military and companies with security tasks progresses, the threat of cyberattacks is increasing rapidly. Sensitive data must be protected. At the same time, it is essential for the organization of armed forces and authorities to exchange data across security domain boundaries without delay. The SDoT Labeling Service fulfills the important task of securely classifying sensitive data and verifying labels. The high-security product is developed and produced in Germany by certified cybersecurity experts according to security-by-design principles. The security appliance meets the strictest requirements of the German Federal Office for Information Security (BSI) and is approved up to NATO SECRET.
Key features.
Universal secure architecture
The internal security architecture of the SDoT Labeling Service is based on the SDoT Security Framework, which has been approved by the BSI several times up to SECRET classification. The hardware makes a decisive contribution to the security of the overall system.
Application-independent data classification
Independent and flexible classification of data, without specific requirements for the system or application. This enables more efficient organization, backup and management of data.
Tamper-proof XML security labels
The automatic flow of information between security domains requires labeling. The labels contain security-relevant metadata, in particular the classification level and other handling properties.
Application scenarios.
- Defense sector
- Intelligence services
- Public authorities
- Data centers
Key Benefits.
NATO STANAG 4474/8 compliant
We meet the strict NATO requirements regarding trustworthy labels and requirements for military data exchange.
Security by design
Our products are designed and hardened in such a way that security functions are never compromised.
Product variant for RESTRICTED scenarios
This product variant is designed for use in data center operations for processing up to RESTRICTED classification.
What is the function of the SDoT Labeling Service?
As part of a data-centric security approach – data-centric security (DSC) or data-centric audit and protection (DCAP) – the SDoT Labelling Service fulfills the important task of securely classifying sensitive data and verifying labels in accordance with NATO STANAG 4474/8. STANAG is the abbreviation for Standardization Agreement. In order to meet the requirements for military data exchange in the future, NATO has defined specifications for the syntax (4774) of trustworthy labels and how these are cryptographically bound to data objects (4778). Trusted labels contain, for example, information about who created the label, when the label was created and when it expires. There are various profiles for REST, SMTP, SOAP, XMPP or Office Open XML. The XML security labels are cryptographically bound to a data object. In combination with the SDoT Security Gateway, various solution scenarios for efficient and controlled data protection and exchange between systems, areas, organizations or nations can be mapped, and the integration of the SDoT Labelling Service into the user’s familiar working environment (e.g. Microsoft Outlook) enables a high level of acceptance and the easy user-orientation of data-centric security.
Let’s get in touch!
Contact our cybersecurity experts. Together we will find a customized solution to protect your highly sensitive data.