Cigent’s Dynamic Data Defense Engine for Windows 10 (D3E) ingests threat intelligence and security events from integrated threat detection sensors and multiple endpoint security solutions, including Cisco Secure Endpoints. When the threat level is elevated, D3E dynamically locks access to sensitive files and Cigent Secure Drives on Cigent Secure SSDs, requiring Duo to access sensitive files and Secure Drives.
There is a gaping hole in endpoint cybersecurity. When an endpoint is compromised by malware, hacker ingenuity, stolen credentials, or device theft/loss, there is no way to protect sensitive personal and corporate data. Full disk encryption protects data at rest but is not effective when the user is logged in.
Cigent established a technology partnership and developed an integration with Duo Security, now part of Cisco, to prevent the financial and reputational loss due to advanced cyberattacks by helping organizations secure their sensitive files, even in the event of a breach.
The Cigent D3E and Secure SSD integration with Duo provides organizations with the ability to require MFA for access to sensitive files on Windows 10 endpoints and Cigent Secure Drives, which protect sensitive files using firmware on Cigent Secure SSDs. This integration ensures sensitive files are always protected by Duo MFA in a simple way that is far more effective than other solutions.
D3E enables Duo step-up authentication for access to sensitive files and Cigent Secure Drives. Verification that the trusted Duo user is accessing files protects against data theft, ransomware, and insider theft.
When a system has Cigent Secure SSD Storage, Secure Drives can be created to store sensitive files. Secure Drives are hidden from the entire PC unless and until the trusted user enables them. When a threat is detected, the O/S locks, or the PC shuts down, Secure Drives are hidden. The only way to unlock Secure Drives is with MFA, including Duo, using D3E installed on the PC. It uses firmware security to protect against the vast majority of endpoint threat vectors including below-the-OS attacks such as kernel and hypervisor attacks, chip implants, boot/rootkits, and firmware/BIOS malware, as well as credential compromise, software vulnerabilities, etc.
Active Lock integrates with multiple endpoint protection platforms, including Cisco Secure Endpoints, to monitor for attacks on PCs. When a threat is detected, Active Lock protects designated files and Cigent Secure Drives, requiring Duo step-up authentication for access, until the threat is cleared.
Duo is a user-centric access security platform that provides two-factor authentication, endpoint security, remote access solutions and more to protect sensitive data at scale for all users, all devices and all applications. Cisco Rides the Wave of Zero Trust and Is Named a Leader in The Forrester Wave™: Zero Trust eXtended Ecosystem Platform Providers, Q3 2020report.
Cisco Secure Endpoints offers a cloud-delivered endpoint protection platform (EPP) and advanced endpoint detection and response (EDR).The functionality of the joint solution is summarized in the illustration below.
Cigent Secure SSD Storage
For more information or to speak with someone about the Cigent + Duo integration, please contact us.