LynuxWorks and secunet collaboration offers high security workstation for multi-level systems

First demonstration of SINA Multilevel Workstation using LynxSecure 5.0 shown at RSA 2012 [RSA conference, San Francisco, & Embedded World, Nuremberg, February 28th, 2012] LynuxWorks™, Inc., a world leader in the secure virtualization market, and German IT security specialist secunet Security Networks AG today announced that they have ported the SINA Multilevel Workstation on to the latest version of the LynxSecure separation kernel and hypervisor. The two companies have also entered into a collaborative agreement to develop, sell and market this combined product to organizations requiring the highest levels of security on a worldwide basis. This product can be used by government agencies requiring secure separation of multiple networks on a single workstation, and any enterprise organizations with highly sensitive information that needs to be protected against malicious threats. First demonstration of the product can be seen on LynuxWorks booth (#332) at the RSA conference in San Francisco, CA from February 27th – March 1st 2012.

“We have been closely working with LynuxWorks on migrating our SINA workstation concept to the LynxSecure high security platform.” said Kai Martius, Head of secunet's High Security Business Unit. “The latest generation of LynxSecure offers the performance and the flexibility required to run on the latest portable workstation platforms without compromising the highest level of security offered by its separation kernel architecture. It’s the only OS platform on x86 worldwide that offers the maturity and reliability to move our SINA workstation product line from a monolithic OS platform to a real MILS architecture. We are proud to present this technology demo on RSA conference.”
LynxSecure makes it possible to securely run multiple SINA sessions at multiple levels of security on a single hardware platform. It does this by isolating applications and networks into separate partitions to prevent dangerous software interactions and to thwart any zero day or unknown cyber attacks. Any communication between the secure partitions is controlled by security policies defined by the system administrator and enforced by LynxSecure. 

"The SINA Multilevel Workstation from secunet with the LynxSecure 5.0 platform offers a unique solution for secure multi-tenancy on endpoint and thin client devices,” said Robert Day, Vice President of Marketing for Enterprise Security at LynuxWorks. "This collaboration brings secunet’s expertise in architecting high security products, including sophisticated techniques like formal methods, together with their proven high security SINA workstation technology to benefit and protect our worldwide customers"  The SINA (Secure Inter-Network Architecture) technology from secunet is the only IP-based crypto-system approved by the German Federal Office for Information Security up to the highest national security level of STRENG GEHEIM (TOP SECRET) for processing and transmission of classified documents. SINA is particularly suitable for customers from the public sector. As a security partner of the German government, secunet is familiar with the requirements of their customers in the public sector and continuously align their SINA products with these requirements.

The combination of the secunet SINA technology and LynuxWorks LynxSecure separation kernel architecture and methodology gives an interactive high-security multilevel workstation which is able to concurrently handle multiple, strictly separated sessions. The user can securely access multiple, differently classified networks from within a single system with the separation of those networks is maintained at all times. As different networks are not necessarily under control of one single organization the workstation design involves a concept to distribute responsibility. As a result, each session can be managed by a different organization independently. A secure graphical user interface (GUI) ensures an unambiguous correlation of user interaction to one well-defined session.