Blue Ridge says the BorderGuard 6000 platform enables administrators to use their existing public key infrastructures such as DoD PKI and X.509 digital certificates, use the system's built-in certificates, or combine the two. The built-in digital certificate feature adds flexibility to an organization's security posture -- especially in scenarios where it's desirable to extend secure corporate LAN access to temporary employees or contractors without using the corporate X.509 certificate authority, according to the company.
The platform integrates Online Certificate Status Protocol (OCSP) with CRL checking, along with Blue Ridge Networks's "Red List" function. The company says this combination gives administrators real-time revocation and local certificate authorization capabilities, even when the certificate authority is under centralized control.
Blue Ridge claims that BorderGuard is unique in providing mobile device users with a "persistent roaming capability," enabling them to use the best available network access connection without having to reauthenticate. This is said to eliminate the possibility of man-in-the-middle attacks and session hijacking. Additionally, the BorderGuard 6000 Series is interoperable with any PKCS#11 smart card or USB token making it fully compliant with HSPD-12 for strong two-factor authentication, according to the company.
The BorderGuard 6000 series is offered in five models ranging from the 6100, which targets small and medium organizations, to the 6600, which targets large enterprises, according to Blue Ridge.
Related stories:
