BOOK A DEMO
How We Help
How We Help
DAR Protection
Learn More
Quantum & Advanced Threat Protection
Learn More
Data Sanitization
Learn More
Insider Threat Protection
Learn More
Capabilities
Learn More
Interested in Commercial and Civilian Solutions? CLICK HERE
Products
Products
Preboot
Cigent PBA
Learn More
Prevent Data Attack
Cigent FDE
Learn More
Prevent Ransomware & All Other Attacks - Cobalt Blue 1(1)
Cigent SSD Clients
Learn More
Frame 84
Cigent SSD Enterprise
Learn More
Frame 87(1)
Cigent SSD UxV
Learn More
Industrial Control Systems
Cigent SSD ICS
Learn More
Hex Editor
Custom Projects
Learn More
Interested in Commercial and Civilian Solutions? CLICK HERE
Assets
Resources
Downloadable Assets
Whitepapers, eBooks, Infographics, and More
Access now
Blog
Read articles on all things cyber security.
Learn More
Interested in Commercial and Civilian Solutions? CLICK HERE
Partners
Who we partner with
Handshake
Partners
Cigent Ecosystem of Device and Service Partners
Learn More
compatible sed devices
Certified Drives
SED Devices Compatible with Cigent
Learn More
Interested in Commercial and Civilian Solutions? CLICK HERE
Company
Learn More About Cigent
Support Company Overview Investors Careers
News from Cigent
4 min read
Edge Computing Requires Edge ..
Discover best practices for protecting sensitive ..
4 min read
Prevent Data Security Issues with ..
Explore how disk cloning and data destruction can ..
See all articles
Interested in Commercial and Civilian Solutions? CLICK HERE
Interested in Commercial and Civilian Solutions? CLICK HERE
Menu Close
BOOK A DEMO
Market - Tank-1

Pre-boot Authentication

Cigent PBA is specifically designed to meet stringent federal security mandates, ensuring comprehensive protection for classified and sensitive information against unauthorized access and potential breaches.

Schedule A Demo
Preboot

Required Protection

Cigent Pre-Boot Authentication (PBA) provides a separate secure authentication environment prior to operating system boot, significantly reducing system vulnerabilities and unauthorized access risks.

Data at Rest Encryption

Meet CSfC DAR Requirements

Cigent Pre-Boot Authentication (PBA) with certified Hardware Full Drive Encryption (HW FDE) provides NSA CSfC-compliant outer-layer encryption required by the NSA’s Data at Rest (DAR) Capability Package

Compliance-1

Multi Factor Authentication Ready

Supports single and multiple authentication factors including username/password, smartcards (PIV), and Security Keys ensuring comprehensive and robust authentication aligned with federal standards.

Prevent Data Attack

Independent Layered Protection

Operates independently from software encryption solutions, ensuring the cryptographic and functional isolation mandated by CSfC architectural requirements.

Efficient Administration

Administration at Scale

Command line interface provides management of PBA with ability to integrate into existing enterprise management.

Portfolio

Wide Device Compatibility

Supports deployment on various endpoints including Intel/AMD/ARM (NVIDIA Jetson Orin) laptops, desktops, workstations, and servers.

Protection

CSfC for DAR Protection

NSA CSfC for DAR requires two layers of protection:

Outer Layer

The outer layer includes hardware full drive encryption (HW FDE) with pre-boot authentication.

Inner Layer

The inner layer includes software full drive encryption with multi-factor authentication.

Cigent PBA

Cigent PBA is NIAP listed on CSfC for DAR component list. With CSfC certified HW FDE it provides the required outer layer of protection.

Cigent PBA is included in all Cigent Secure Storage to provide a single outer-layer solution or is compatible with other CSfC compliant CSfC drives.

How Cigent PBA Protects your Data

Cigent PBA safeguards sensitive data through robust hardware-based encryption, enforcing pre-boot authentication requirements as mandated by the NSA CSfC DAR Capability Package. This ensures compliance and protection of mission-critical data at rest.

Device Powered Off

All data remains encrypted, unreadable, and inaccessible.

Pre-boot Authentication

Upon powering the device, authentication via supported methods including username/password, smartcards (PIV), or Security Keys is required prior to the operating system boot sequence, establishing secure access controls before any data is decrypted.

Authentication Boot

Once authentication is successful, the operating system boots, and the drive’s encrypted data becomes accessible to the authorized user.

An image of preboot user authentication

The Cigent Advantage

Cigent solutions were designed and developed with and for US Intelligence and Defense communities. All employees, including Cigent software development, are based in the US. The team includes multiple personnel with TS/SCI clearance with decades of data protection and operational experience to support your requirements.

Cigent solutions have been tested and validated by leading Federal agencies including MITRE, NIST, NSA, NIAP, the Air Force, Cyber Resilience of Weapon Systems (CROWS), and NSSIF (UK) and are deployed across US Intelligence agencies, US Defense services, and the defense industrial base.

iStock-814367282
ebook

Protect Your Data at Rest

Cigent is prepared to support your mission navigating the complex compliance requirements to protect data at the edge. Its solutions were developed for and with US Federal agencies with deep expertise in data protection. Read our extensive eBook to learn more.

Download eBook Now
Cigent-Secure-Storage-White-Paper-11-15-2024_09_38_AM
Resources / Blog
Introduce resources that can
provide value to the visitor
View all
4 min read

Edge Computing Requires Edge Security: Best Practices for Protecting Sensitive Data at the Edge

Discover best practices for protecting sensitive data at the edge with Cigent's insights ..

Read more
4 min read

Prevent Data Security Issues with Disk Cloning & Data Destruction

Explore how disk cloning and data destruction can prevent security issues. Learn how to ..

Read more
Blog 4 min read

FIPS 140-2 & FISMA — Understanding Cybersecurity Compliance for Cryptography Modules

Learn about FIPS 140-2 and FISMA compliance for cryptography modules, essential for ..

Read more

Frequently Asked Questions

Check out the answers to some of most frequently asked questions about Cigent, what we do, and how we do it. Don’t see your question on the list? Click the BOOK A DEMO button in the top right corner of your screen to learn more about us during a custom demo.

What does Cigent do?

Cigent protects data on devices operating at the edge from unauthorized access. Cigent solutions secures data at rest with layered protection including hardware encryption, pre-boot authentication, and multifactor authentication. Cigent also ensures data integrity when the device is in use preventing wiping and cloning and other data attacks.

How does Cigent work?

To prevent sophisticated adversaries from unauthorized access requires layered protection. The foundation of Cigent solution is 256-AES full drive hardware encryption with pre-boot and multifactor authentication. These capabilities have been validated by agencies including NSA and NIAP. Additionally, Cigent provides capabilities that ensure the integrity of data through its lifecycle including hidden partitions, storage-embedded AI, and verified data erasure.

What is data-at-rest encryption?

Data at rest encryption traditionally refers to the encryption of data when the device is asleep or powered-off. Data at rest encryption seeks to prevent adversaries who gain physical access to the device would seek to extract sensitive data. Cigent uses AES 256 full drive hardware encryption with pre-boot and multifactor authentication. In addition, Cigent uses zero-trust access to control to also protect data when a device is in use. This is with hidden partitions that maintain encryption until it is accessed with step-up authentication.

What is pre-boot authentication?

Pre-boot authentication (PBA), also known as power-on authentication, is a security feature that requires users to authenticate before their device boots up. PBA is a layered approach that protects devices and data from offline attacks and cyberattacks. It's often used with full disk encryption (FDE), where users must authenticate to boot the system and restore data. Cigent PBA has been tested and validated by leading organizations including NSA, DISA, NIST, and NIAP.

What devices does Cigent protect with hard drive encryption?

Cigent provides the widest breadth of secure storage solutions all utilizing hardware encryption. These includes: PCs supporting both M.2 2280 and the emerging M.2 2230 standard, remote servers and NAS devices with U.2 drives, external media with flash drives, encrypted external drives, SD and Micro SD cards, and embedded for SSD BGA.

Does Cigent help with certifications?

Yes, Cigent Secure Storage Solutions can support organizations meeting Commercial Solutions for Classified (CSfC) for data at rest including pre-boot authentication requirements. Cigent solutions can also meet FIPS 140-2 and 140-3 standards. Additionally, Cigent can address requirements from Executive Order 14028 including encryption of data at rest, multi-factor authentication, and the utilization of zero-trust access control. Cigent protections have been thoroughly tested and validated by leading Federal agencies including MITRE, NIST, NSA, NIAP, the Air Force, Cyber Resilience of Weapon Systems (CROWS), and NSSIF (UK).

Still have questions?

Learn more about Cigent and our solutions by downloading our company overview.

DOWNLOAD COMPANY OVERVIEW
Card

Cigent’s Federal Data Protection Solutions are second to none

Learn more about how Cigent can help you achieve your mission and protect data at rest and data on the edge from all forms of attack.

Schedule a Demo