Layered Data Protection
Cigent delivers a full-stack, CSfC-aligned Data-at-Rest solution that combines NIAP-validated hardware and software encryption with pre-boot authentication, multifactor access, and verified sanitization. From encryption to erasure, Cigent simplifies compliance, strengthens security, and protects mission data across every device and environment.
Cigent delivers AES-256 hardware full-drive encryption (HWFDE) validated by NIAP, with multiple drives listed on the NSA CSfC Data-at-Rest Components List. Combined with Pre-Boot Authentication, HWFDE forms the outer layer of a CSfC-aligned architecture.
Cigent Pre-Boot Authentication (PBA) enforces secure authentication before the operating system loads, keeping encryption keys outside the OS environment. NIAP-listed and CSfC-approved, PBA works with hardware FDE to establish the first layer of defense for data at rest.
Cigent Software Full Drive Encryption (SWFDE) provides AES-256 encryption with independent key management, ensuring cryptographic separation from the hardware layer. NIAP-validated and undergoing CSfC listing, SWFDE delivers the inner protection layer for complete DAR compliance.
Cigent supports multifactor authentication (MFA) for SWFDE and HWFDE, combining a username and password with a CAC or hardware security key. MFA enforces user identity verification before access, strengthening protection for sensitive or classified data environments.
The Cigent Command Line Interface (CLI) integrates directly with existing enterprise management frameworks, such as MECM/SCCM and Ansible, enabling large-scale deployment, configuration, and policy enforcement without requiring a separate management console.
Cigent performs crypto and block-level erasure locally, remotely, or via policy automation to ensure complete data elimination. A patented firmware-level verification confirms that all data has been permanently destroyed, providing provable sanitization assurance.
Cigent SSDs can be divided into up to eight independent, locked partitions, each with its own access controls. These secure volumes protect data at the sector level, remaining invisible and unreadable even to adversaries with direct device access.
Cigent generates immutable access logs that record all authentication and data activity. These tamper-proof logs can be reviewed by administrators or exported to SIEM tools for advanced analysis, compliance auditing, or forensic investigations.
