QTRUST Server
The QTrust Server is a highly secure solution designed to meet the special security requirements of companies handling data classified as worthy of protection. The QTrust Server, as an Application Level Firewall, combines application and network security functions in an easy-to-manage appliance. Serving as a gateway between insecure and secure networks, the QTrust Server prevents direct data exchange between connected networks. All connections are decoupled and inspected by the QTrust Server, both at the network (IP) and application levels.
All services on servers in internal networks or DMZs are 'mirrored' externally by the QTrust Server. Acting as a proxy (secure gateway), the QTrust Server handles communication and protects underlying systems following the sandbox principle. In addition to Application Proxying and Content Scanning, the QTrust Server features extensive logging and reporting functions for detailed diagnosis. In case of attacks, the integrated Intrusion Detection System (IDS) triggers an alarm, allowing immediate blocking of the attacker (IPS).
QTRUST Principle
The QTrust Principle entails that all services on the QTrust Server are completely separated by the underlying mechanisms of the Trusted Operating System PitBull®. This PitBull® technology is embedded in the operating system kernel and protects the entire system at the highest level, previously achieved only in military and intelligence environments. Each module or service runs completely isolated from other services on the system, as if they were distributed on different computers.
The individual modules or services cannot communicate or exchange data with each other, except with strictly limited rules. Thus, an attack on one of the services has no impact on the others, leaving them entirely unaffected. Only through the combination of QTrust and PitBul® technology is it possible to offer this complex functionality highly securely in a central system. The QTrust Server has all the necessary interfaces and standards required for a security appliance, enabling seamless and trouble-free integration into existing infrastructures at any time. The QTrust Server with the Trusted OS is the basis for implementing the new IT security strategy 2.0.
Highlights
- Based on Trusted Operating System
- IT Security 2.0 Compliant
- Multilevel Firewall and Gateway
- Disruption of data flow in all directions
- Omnidirectional mirroring of all services
- Highest availability and service through HPE or Stratus ftServer
- Full managed service possible through QLine
- Basis for highly secure application access QTrust ID
DATA AND FACTS
Firewall
- Packet filtering and Stateful Inspection
- Graphical administration (Drag&Drop) with plausibility checks
- Web Application Firewall (WAF)
VPN-Gateway
- QTrust ID: Highly secure application access
- IPSec, OpenVPN, VTUN, PPTP for LAN to LAN between sites
- PC to LAN for traveling employees
- Authentication mechanisms PKI, Active Directory, etc.
- High availability and scalability through clustering of multiple QTrust Servers - through high availability systems
Application Proxies / Load Balancer
- SMTP, HTTP, HTTPS, DNS, and others
- Forward and Reverse Proxying
- Network Load Balancing
HTTP secure Proxy für Clients
- Internet performance improvement - Traffic reduction
- High security for clients
Content-/Virenscanner
- for HTTP/HTTPS, FTP, SMTP/Email
Easy administration
- Role-based administration
- Web-based administration
- Graphical configuration tools
- Based on PitBull technology