The advantages of the L3 Box at a glance
The holistic security concept of the SINA L3 boxes includes a hardened and evaluated SINA OS operating system, smartcard technology and IPSec-based cryptography for standardized all-round protection.
The availability and reliability of SINA L3 Boxes can be increased by means of redundant configurations. In addition, SINA L3 Boxes also support geo-redundant and load-sharing configurations.
The SINA L3 boxes are approved in various configurations from CONFIDENTIAL up to and including TOP SECRET, NATO SECRET as well as SECRET UE/EU SECRET.
SINA Management allows administrators to conveniently configure and manage all users and network components.
With the various hardware versions, the SINA L3 Box S can be used flexibly and national and international security networks can be set up easily. It is also available as a hardened, robust design for use in harsh environmental conditions.
The SINA L3 Box E is the only IP-based crypto systems approved for the transmission of classified information up to and including VS-VERTRAULICH, NATO CONFIDENTIAL and CONFIDENTIAL UE. It offers high performance bidirectional encryption performance of up to 400 Mbps in a lightweight and compact 19" 2 height unit design.
The compact SINA L3 Box H/H R 200M combines encryption data throughput with 200 Mbps full duplex, a long-life battery and an efficient emergency delete button. It also supports IPv6, IKEv2, SHA-256 and VLAN. It also comes in a hardened, ruggedized design for use in harsh environmental conditions.
There can only be one choice for the transmission of TOP SECRET data: the SINA L3 Box H 200M-a. It is based on the proven SINA CORE crypto module, is PEPP-compatible and offers users a high degree of flexibility thanks to reloadable crypto device classes, extended temperature ranges, network interfaces that can be reconfigured directly on the device and moderate power consumption.
SINA – Secure Inter-Network Architecture
SINA was developed as a holistic security system that protects entire digital infrastructures. At its core, perfectly matched network components and clients ensure effective encryption and separation of differently classified data - locally and when transferred over the internet.
SINA is used worldwide by governments, critical infrastructures and in industry and is the leading security architecture in the Federal Republic of Germany with over 170,000 installed systems.
SINA Management centrally manages and configures all users and components of the SINA product portfolio. The networks to be protected are set up, configured and administered in a structured manner. With its graphical user interface, SINA Management enables the simple configuration of security relationships and access authorizations between SINA components and networks.
This is how SINA Management works: Configuration data, such as IP address configurations or routing information of the SINA components, is written to the SINA ID Token - a trusted and protected storage medium (smartcard, security token or USB token with integrated smartcard). The configuration data is then securely stored on the SINA ID token and made available to the SINA components. In the process, SINA Management generates and manages the keys and certificates required for secure operation of the components and also writes them to the storage media. SINA Management is used to manage infrastructures with up to several thousand SINA devices.
Dynamic VPN meshing
The unique technology SINA SOLID (Secure OverLay for IPsec Discovery) is a new function for the SINA L3 Box S and the successful result of a research process lasting several years. SINA SOLID can automatically configure very large and flexible IPsec networks while significantly increasing performance at the highest security level.
The function allows dynamic VPN networking that automatically configures the connection between the individual network nodes. All the security properties of IPsec and SINA are fully retained. SINA SOLID significantly reduces the administrative effort required for large and complex networks, as the system reacts automatically to changes in the network and manual intervention is no longer necessary.