Home   |   Approach   |   Solutions   |   Team   |   Contact   |   Jobs

Approach

Existing enterprise solutions, based on the idea of perimeter defenses, don't work. Intelligence agencies and the military have known this for years and have architected their networks very differently - based on three rules:

 

Go Stealth: Hide everything. They can't attack what they can't see. Ensure that the existence of users and computers is only exposed to those that need to know. Then, encrypt everything - end-to-end and at rest, so that the data can not be observed.

 

Partition and Isolate: Partition each application in its own virtual private network (VPN) such that users and devices need to strongly authenticate themselves out-of-band before they can gain access to the server, and then isolate each partition from all others such that if any partition does get compromised it can't migrate to other partitions.

 

End-to-End Chain of Trust: Starting at a highly secure root of trust, establish a complete chain of trust to the client, and, independently, to the server. Then, complete the end-to-end chain of trust that includes clients, servers, and the network in between.

 

This methodology mitigates a number of threat vectors including man-in-the-middle attacks on DNS and SSL, Distributed Denial of Service (DDoS) attacks, Advanced Persistent Threats from compromised end systems, scanning for network services by contractors located inside the firewall, sniffing of data from within the data center, and more.

 

The level of security enabled by this methodology cannot be achieved by simply integrating and configuring existing off-the-shelf products. Vidder designs and aids in the deployment of custom solutions to meet specific customer needs using the philosophies above. To achieve the desired solution often requires deploying unique Vidder-developed technology that adds new capability and orchestrates the functionality of existing installed base components.