Spyrus

Your security solution

Are you developing an IoT Device?

Learn more about SPYRUS security solutions for the IoT!
GO!
Security-in-a-Box-logo_SML

Mobility. Security. Cost Savings.

We live in an IT world comprised of what appear to be opposing corporate forces.  On one hand, we have enormous demands to increase worker productivity and support an ever-changing, distributed and mobile workforce.  On the other hand, we are being asked to secure our corporate network access and our underlying corporate data…..and all of this, while managing our overall spend.

SPYRUS Rosetta technology allows to incorporate the highest level of hardware based security into products such as Windows To Go live drives, PocketVault™ encrypted storage USBs, and Rosetta microSDHC™ encrypting flash devices at a very reasonable cost.  The result is high mobility and cost savings for your users with dramatically increased corporate security. With SPYRUS, you can have it all.

Mobility. Security. Cost Savings.

Spyrus-Secure-Pocket-Drive-USB

If Security is your Question, then SPYRUS is the Answer.

spyrus-WindowsToGo

Windows To Go

Live Drives

More Info
Spyrus PocketVault

PocketVault™

Secure Storage Drives

More Info
spyrus rosetta

Rosetta

Hardware Security Modules

More Info
Cryptographic OS

The foundation of almost all of the SPYRUS technologies is SPYCOS (SPYRUS Cryptographic Operating System). SPYCOS is the firmware operating system incorporated into SPYRUS hardware devices. It supports more cryptographic algorithms than any other commercial product and dynamically allocates nonvolatile memory. SPYCOS is at the core of the Rosetta Hardware Security Modules (HSM).

More Info
Hardware Designed for Security

SPYRUS security hardware products are designed, developed, tested (to include MIL 810 testing) and manufactured in the USA with the following characteristics:<br /> Tamper Resistant and Tamper Evident; Random Number Generator (RNG); Chip Security Features.

More Info
SPYRUS Security Architecture

The SPYRUS security architecture is based on public key infrastructure architecture that integrates with and complements the overall security functionality of the Microsoft ecosystem. Separate SPYRUS components are responsible for security standards as required by certificate authorities, encrypting email, VPN authentication, etc.

More Info

SPYRUS WindowsToGo

Turn any PC into a compliant enterprise Windows desktop.

Windows To Go offers workers new ways to stay fully productive and connected. For starters, it makes it easier to support BYOD policies for both employees as well as for Contractors and Teleworkers.

Learn more on Windows To Go Live Drives
spyrus-WindowsToGo

SPYRUS Windows To Go live drives turn personal computers, including many Macs (service provided by SPYRUS), into compliant enterprise Windows desktops-with or without connectivity. SPYRUS Windows To Go drives boot the OS and completely bypass the host computer’s hard drive. There is no impact on the host computer and no footprint left behind when the drive is shut down.

Windows To Go is even used in Computer Replacement decisions as a way to extend life and performance of computers without the full cost of replacement.

In addition, the unparalleled hardware based security features specifically found in the flagship SPYRUS Windows To Go live drives allow many government and enterprise organizations to provide new solutions for Secure Remote Access, Secure Internet Browsing, and Secure Cloud Computing Access and Storage.

Regardless of your application, there is a SPYRUS Windows To Go solution for your needs that can empower your workforce while improving security and saving money in the process.

A summary of the SPYRUS Certified Windows To Go Products and Features is show below for Worksafe Pro™, WorkSafe™, Secure Portable Workplace™ and Portable WorkPlace™:

 

XTS-AES256 Hardware Encryption Layered Data Security Built In PKI Smart Card Data Vault Read/Write Read Only Configuration SEMS Management Option BitLocker Full Disk &/O Data Vault
WorkSafe Pro
WorkSafe Upgrade
Secure Portable Workplace
Portable Workplace Upgrade

Click on the links below to download a PDF of the product overview and technical specifications. All products are available in memory sizes ranging from 32GB up to 512 GB; and they all take advantage of SSD memory to provide high performance over a USB 3.0 interface.

Windows To Go Live Drives

Portable Workplace & Secure PW

WorkSafe & WorkSafe Pro

Windows To Go Xtreme (WTGXtreme)

Speak with an Expert
spyrus-pocketvault

PocketVault™

The Highest Level of Data Protection

If you think encrypting storage devices are a commodity, SPYRUS is probably not the right solution for you.

Learn More on Data Encryption

At SPYRUS, they believe that secure USB and microSDHC devices can not only provide a convenient and cost effective way to store and share files while on the go, but they can dramatically improve both data protection and data containment for your confidential corporate information.

Both P-3X (USB 3.0, SSD) and Rosetta Trusted Flash™ (microSDHC, flash) deliver high-security, use-anywhere USB and microSD encryption and authentication built on trusted Secured By SPYRUS™™ technology—the same Suite B military grade security used by the US and other Governments to protect Data at Rest. The cryptographic components in every SPYRUS security device are designed, engineered, and manufactured in the United States. The SPYRUS family of secure storage solutions add further security capabilities such as providing authentication and public key enabled (PKE) application services used by enterprise and Government organizations for two factor authentication and secure communications.

In addition, the SPYRUS P-3X USBs and Rosetta Trusted Flash™ can be managed by an enterprise with the SPYRUS Enterprise Management System (SEMS™) for mobile device management (MDM). SEMS features include remote device disable/enable and destroy functions, remote password reset, policy enforcement, expiration policy, file auditing to and from the drive, and more.

Crittografia Hardware AES 256-bit Built in PKI Smart Card per MFA Validato FIPS 140-2 Livello 3 Supporto Crittografico Suite B Totale Supportato da SEMS USB 3.0 SSD Memory Flash Memory Dimensioni Memoria
Pocket Vault P-3X da 32G a 1T
Rosetta Trusted Flash Q4 da 4G a 32G

Hardware AES 256-bit Hardware Encryption

SPYRUS protects all data using hardware based AES 256 hardware encryption mode on the USB and microSDHC. In addition, SPYRUS uses the FIPS 140-2 Level 3 certified Rosetta SPYCOS security controller to provide all military grade key management features to the AES hardware engine.

Built in PKI Smart Card for Multi-factor Authentication (MFA) and PKE Applications

P-3X and Rosetta TrustedFlash security devices contain the SPYRUS Rosetta PKI smart card functionality used to generate and store public/private Elliptic Curve Cryptography and RSA key pairs, store digital certificates, sign email or documents, and enable strong multi-factor authentication for vpn and cloud applications.

FIPS 140-2 Level 3 Validated

All SPYRUS products use the Rosetta SPYCOS secure microcontrollers that are Common Criteria certified and validated at FIPS 140-2 Level 3.  The SPYRUS products all use an on-board, hardware-based FIPS-certified random number generator to provide the highest quality entropy and keying material to guarantee the highest quality random keys are available for security applications.

Full Suite B Military Grade Security

Because SPYRUS is first and foremost a security company, all devices have been designed and architected with security in mind.  The military-grade hardware encryption, key management, and on-board hardware security infrastructure meet and exceed the US and other Government’s Suite B security requirements to protect sensitive and classified data.  In addition, strong Suite B authentication capabilities provide a secure environment for the storage of passwords and biometric templates used for authentication, their verification. All critical security parameters are passed using a EC-DH P-384 security channel generated between the Rosetta SPYCOS security chip and targets.

SEMS Device Management Support

The SPYRUS Enterprise Management System (“SEMS”) provides a very strong security and productivity solution for any organization deploying SPYRUS secure storage devices. While these drives provide the strongest military grade Data-at-Rest protection when used by the mobile workforce, SEMS provides organizations the ability to remotely management, disable or destroy, expiration, audit and enforce security and usage policies. SEMS was designed to operate on Windows server ecosystem on premise or on Microsoft Azure with ability to scale from proof of concept with a small number of devices to deployments with tens of thousands of devices under management

Click on the links below to download a PDF of the product overview and technical specifications.

PocketVault P-3X

PocketVault P-3X Courier Mode

Rosetta microSDHC PKI Trusted Flash

Speak with an Expert!

Rosetta

Root of Trust Hardware Security Modules

The foundation of almost all of the SPYRUS technologies is SPYCOS (SPYRUS Cryptographic Operating System). SPYCOS is the firmware operating system incorporated into SPYRUS hardware devices. It supports more cryptographic algorithms than any other commercial product and dynamically allocates nonvolatile memory. SPYCOS is at the core of the Rosetta Hardware Security Modules (HSM).

spyrus rosetta

The family of Rosetta HSM includes the Rosetta Micro Series II (pictured to the right) and Series III. Micro Series II and Series III are embedded in many other SPYRUS products such as our Windows To Go Live Drives and are ideal for custom applications. Their compact size makes them the perfect choice for small devices such as computers, cell phones, PDAs, wired and wireless routers, point-of-sale and gaming terminals, set-top boxes, industrial control devices voting systems and new Internet of Things devices.

The design of the Rosetta Series II and Series III smart card and USB security devices provides a high-assurance security platform for application development and support:

  • Secure Document Transmission and Retention: Including high-strength encryption and digital signatures for applications such as secure e-mail.
  • Nonrepudiation applications: Digital signature private keys, once generated or loaded onto a Rosetta Series II smart card or USB, can never be exported or extracted from that device. Unique PINs can be assigned for nonrepudiation use, as opposed to encryption or authentication keys, to prevent confusion. Encryption keys can be securely archived onto another physical token or onto a virtual token that uses secret-sharing techniques for adequate key backup.
  • Electronic Notary: Digitally sign legal documents, including forensic evidence and audit logs, for uses such as Sarbanes-Oxley compliance.
  • Single Sign-On: Using Windows smart card logon, sign on to the network, Active Directory, and legacy applications. VPN and SSL/TLS mutual authentication applications are supported.
  • Secure Master Key Storage: Supports applications that use software encryption for file/disk encryption and high-speed streaming media while maintaining the master keys in a secure token. This provides cost-effective, high-security protection against the theft or surreptitious cloning of the entire file system of a client or server, including backup files and archives. SSL and EFS private keys can also be protected.
  • Code Signing: Supports digitally signed executable code, macros, and other assemblies. Compatible with Windows .NET Security Framework applications.
  • Microsoft Windows Compatibility: Rosetta Series II and Series III smart card and USB security devices, when used in combination with SPYRUS MiniDriver and PKCS #11 software, provide a flexible, highly secure interface with Microsoft Windows applications.

Rosetta Micro Series II and Series III

Capabilities such as anti-cloning can be added to meet specific requirements.

Enables PKI-based digital certificate functionality such as smart card logon, e-mail digital signature and encryption, and authenticated Web browsing.

Built on FIPS 140-2 Level 3 validated SPYCOS (SPYRUS Cryptographic Operating System) crypto core.

spyrus rosetta

Rosetta SDHC™/microSDHC™ Card

High-assurance protection for keys, digital IDs, and sensitive data

SD/IO interface standard supported

Unique serial number for each Rosetta SDHC card

Approximately 32K of EEPROM available for X.509 certificates and data storage

Advanced random-number generation technology

Anti-cloning

TrustedFlash™ AES 256-bit hardware self-encrypting configuration option providing flash memory protection with PKI services

spyrus rosetta 2

Rosetta Series II and Series III USB and Smart Card Security Devices

The Rosetta Series II and Series III products draw on over a decade of proven performance to provide the strongest possible security for such security-critical capabilities as PKI-based identity management, data security, data integrity, and non-repudiation—all in a compact, rugged, tamper-evident hardware case. The Rosetta Series II and Series III USB is a reader-less industry standard USB Smart Card Class device (CCID). It uses drivers built into desktop operating systems like Windows, Linux and OSX.

When used with the companion SPYRUS Minidriver software, Rosetta Series II and Series III security devices provide support for standard application interfaces that use the Microsoft® Windows® Cryptographic API (CAPI) Cryptographic Service Provider (CSP), the Windows PC/SC smart card logon protocol, and the standard PKCS #11 interface used by some Web applications and non-Windows platofrms. Windows WHQL-certified drivers are available for Windows XP, Windows Server 2008, Windows Vista, Windows 7, Windows 8 and Windows Server 2012.

spyrus rosetta series II

Click on the links below view or download a PDF of the product overview and technical specifications for each of the Rosetta products.

Rosetta Micro Series II and Series III

Rosetta Smart Card & USB

Rosetta microSDHC PKI Trusted Flash

Contact Us
sems_diagram_sml1

SEMS™, SPYRUS Enterprise Management System

Configure. Deploy. Manage. Audit.

The SPYRUS Enterprise Management System (“SEMS™”) provides a very strong security and productivity solution for any organization deploying SPYRUS encrypting storage drives and/or our Microsoft certified bootable Windows To Go Live Drives.  While these drives provide the strongest Data-at-Rest protection when used by the mobile workforce, organizations are faced with another challenge that is the management, audit and policy enforcement of these high capacity, small form factor devices.  SEMS solves that problem.

SEMS was designed to operate on Windows server ecosystem on premise or on Microsoft Azure with ability to scale from proof of concept with a small number of devices to deployments with tens of thousands of devices under management.

device_mgmnt

Centralized Device Management

people

Device & User Activity Auditing

policy_icon

Policy & Privilege Management

lock_icon

Data Access Control

NcryptNshare

Easy to use software for hardware-based file encryption & sharing

NcryptNshare is a suite of applications that work with any SPYRUS Rosetta enabled device to allow you to encrypt your files and control access in the cloud or wherever they are stored. It ‘seals’ the file closed and can detect if a file has been tampered with (for instance by malware), and by owning the key, only you control access to the file.

The Rosetta security devices are used as the key and the trust anchor in the application to create the encrypted files and vaults, unlock and gain access to the encrypted files and vaults, or share the encrypted files and vaults and their content with other authenticated NcryptNshare users. Wherever your data is stored, or whether it’s at rest or in transit, NcryptNshare will keep it safe.

US_State Department

“When it comes to protecting and securely sharing our files and content, SPYRUS was the clear choice.”

The Department of State

Watch the 2-min video and see how to create and share encrypted files and volumes with the NcrypNshare applications. It’s that easy!

There are three NcryptNshare applications that will be available for Windows. RES4Office is the first application that is a Microsoft Office add-on for Word, Excel, PowerPoint, Project and Visio that allows you to encrypt and share your files and set access permissions directly from inside the Microsoft Office application and share the encrypted file with Outlook, SharePoint, Skype for Business and Skype.

SPYRUS also offers two additional new NcryptNshare applications for Windows – RES Disk & RES Pro. RES Disk works by creating any number of virtual encrypting vaults on any memory device such as microSD, SD, USB, computer hard drives, or network share drives that can be shared with other authenticated RES Disk users. RES Pro is a Windows Explorer Extension application that gives the user a right click experience and encrypts any file type and shares it with any other authenticated RES Pro user. This application compliments RES4Office and RES Disk.

Click on the links below to download a PDF of the product  for each of the NcryptNshare applications.

SPYRUS RES4Office

SPYRUS RES Disk

SPYRUS RES Pro

Contact Us

Hear how the military deploy SPYRUS Windows To Go

Spyrus Customers

Learn now how SPYRUS can help.

Speak with our experts and see how SPYRUS can help your organization in preventing any security issue.