Skip Navigation

Uniting Need to Know with Need to Share 

Information sharing has become critical to maintaining national security. Agencies need to communicate mission-critical information between people, organizations, locations, communities of interest, and security domains, while ensuring exchange of correct and authorized data with authorized recipients.

To solve this problem, agencies need to employ a cross domain solution that provides assured information sharing with the ability to securely transfer information between two or more differing communities of interest or security domains.

SafeNet Assured Technologies Multi-Domain eXchange (MDeX) System

The MDeX System securely manages the transfer of voice, video, and data across multi-level security domains. This adaptable plug-n-play solution provides assured information sharing so that right data is shared with the right recipients, while rigorously enforcing your information sharing policies.

The MDeX System enables sensitive information to be shared between organizations to address mission critical problems such as:

  • Cybersecurity Situational Awareness
  • Disaster Response
  • Supply Chain Security
  • Defense and Intelligence Coordination
  • Cloud Assurance
  • Big Data Analytics

MDeX System Architecture

  • MDeX Transfer System (MTS): Security core appliance that orchestrates the flow and filtering of information according to customer policies and rule sets
  • Security Domain Intermediary (SDI): Protocol and queuing edge interface between domain applications and MTS
  • Remote Management Station (RMS): Enterprise management appliance for policy and security management, command and control, and monitoring

MTS Appliance

  • SafeNet information flow engine, Oracle Solaris 10 with Trusted Extensions, Oracle Java, Oracle XACML, SPARC, or x86 platforms

RMS Appliance

  • SafeNet CDS manager, Oracle Solaris 10, Oracle Java, Oracle MySQL, Splunk, SPARC, or x86 platforms

SDi Applications

  • SafeNet protocol clients and queue manager, Oracle Java

Splunk ™

  • Splunk is a commercial product integrated into the RMS for event management

MySQL ™

  • Database repository used within the RMS for storing system data

SDI API

  • The SDI API allows for legacy or unique application integration with the MDeX System

TIBCO Java Message Service (JMS)

  • Provided SDI client supports TIBCO’s Enterprise Message Service (EMS) JMS client for message exchanges within enterprise bus architectures. Requires customer to have existing TIBCO EMS Enterprise License

OASIS XACML

  • Industry standard access policy interoperability and extensibility so that policy decision points can exist in multiple places. Access policy managed through RMS

 

Features and Benefits

Plug and Play Architecture

The MDeX System’s modular design creates an environment where adding new domains, communities of interest, applications, and content filters requires significantly less custom development compared to most solutions. This gives organizations the flexibility to change their requirements based on mission needs.

Enterprise and Mission Integration

The MDeX System includes enterprise and mission management through its centralized (managing n CDS instances) and distributed (remote accessibility to management platform) capabilities for command and control, monitoring, and management activities.

Ease of Use

The MDeX System’s intuitive GUI for remote management provides a forward-thinking interface to policy and configuration management, and the means to view audit, system, and application events. This user-friendly design enables systems managers to quickly learn MDeX System operations.

Accessibility

The MDeX System includes PK-enabled web access from any authorized location. The MDeX System also provides the ability for enterprise and mission management services to gain accessibility to active cross domain event information to enable proactive data flow management.

Dynamic Policy Enforcement - Real-time Policy Changes with Assurance

Dynamic policy enforcement allows data owners to establish granular information flows and content filtering policies as mission needs dictate using the industry standard, OASIS XACML, security policy language.

The separation of flow and content policies, and use of XACML, enables rapid examination and approval of defined policies by organization authorities.  This allows organization and mission authorities to operate in a coordinated manner to implement policy changes to address changing mission needs.