Duo Security and Cigent Data Defense Solution

Extend Duo Multifactor Authentication to Windows 10 Sensitive File Access

Executive Summary

Cigent’s Dynamic Data Defense Engine for Windows 10 (D3E) ingests threat intelligence and security events from integrated threat detection sensors and multiple endpoint security solutions, including Cisco Secure Endpoints. When the threat level is elevated, D3E dynamically locks access to sensitive files and Cigent Secure Drives on Cigent Secure SSDs, requiring Duo to access sensitive files and Secure Drives.

There is a gaping hole in endpoint cybersecurity. When an endpoint is compromised by malware, hacker ingenuity, stolen credentials, or device theft/loss, there is no way to protect sensitive personal and corporate data. Full disk encryption protects data at rest but is not effective when the user is logged in.

Cigent established a technology partnership and developed an integration with Duo Security, now part of Cisco, to prevent the financial and reputational loss due to advanced cyberattacks by helping organizations secure their sensitive files, even in the event of a breach.

Joint Solution Description

The Cigent D3E and Secure SSD integration with Duo provides organizations with the ability to require MFA for access to sensitive files on Windows 10 endpoints and Cigent Secure Drives, which protect sensitive files using firmware on Cigent Secure SSDs. This integration ensures sensitive files are always protected by Duo MFA in a simple way that is far more effective than other solutions.

Cigent Solutions: Cigent D3E, Cigent Secure Drive

Zero Trust Access Controls

D3E enables Duo step-up authentication for access to sensitive files and Cigent Secure Drives. Verification that the trusted Duo user is accessing files protects against data theft, ransomware, and insider theft.

Cigent Secure Drive

When a system has Cigent Secure SSD Storage, Secure Drives can be created to store sensitive files. Secure Drives are hidden from the entire PC unless and until the trusted user enables them. When a threat is detected, the O/S locks, or the PC shuts down, Secure Drives are hidden. The only way to unlock Secure Drives is with MFA, including Duo, using D3E installed on the PC. It uses firmware security to protect against the vast majority of endpoint threat vectors including below-the-OS attacks such as kernel and hypervisor attacks, chip implants, boot/rootkits, and firmware/BIOS malware, as well as credential compromise, software vulnerabilities, etc.

Active Lock Threat Response

Active Lock integrates with multiple endpoint protection platforms, including Cisco Secure Endpoints, to monitor for attacks on PCs. When a threat is detected, Active Lock protects designated files and Cigent Secure Drives, requiring Duo step-up authentication for access, until the threat is cleared.

Cisco Solutions: Duo Security and Cisco Secure Endpoints

Duo Security

Duo is a user-centric access security platform that provides two-factor authentication, endpoint security, remote access solutions and more to protect sensitive data at scale for all users, all devices and all applications. Cisco Rides the Wave of Zero Trust and Is Named a Leader in The Forrester Wave™: Zero Trust eXtended Ecosystem Platform Providers, Q3 2020report.

Cisco Secure Endpoints

Cisco Secure Endpoints offers a cloud-delivered endpoint protection platform (EPP) and advanced endpoint detection and response (EDR).The functionality of the joint solution is summarized in the illustration below.


Cigent D3E

Cigent Secure SSD Storage


Contact us

For more information or to speak with someone about the Cigent + Duo integration, please contact us.

Your submission has been received. We'll be in touch shortly.
Oops! Something went wrong while submitting the form.

About Cigent

Cigent Technology keeps the most valuable asset on your endpoint safe—your data. Our cybersecurity solutions are built by an elite team, with backgrounds in intelligence, ethical hacking to help public and private entities protect themselves, and data storage, including development, erasure, and advanced recovery. As a result,our solutions beat hackers at their own game, and keep your data safe.