4Secure

TrustedFilter®

TrustedFilter transforms, inspects, and filters a wide spectrum of data types and protocols such that only 'known good' data is allowed to cross network boundaries and between networks of different trust. We also provide file content disarm and reconstruction to sanitise files during transfer.

Features

• File transfer sanitisation (Patching, file transfer, etc.)
• Simple and custom TCP stream verification
• Verification of feeds into incident event managers (Syslog, SNMP, etc.)
• Web-based traffic verification (HTTP/HTTPS)
• Unicast and screen sharing verification (VNC/RDP)
• Data verification within industrical control systems (MQTT, AMQP, OPCUA, etc.)
• Protocol break packet transformation
• Full security control via schema validation
• Secure one-way transfer
• Easy software configuration and license control

Benefits

• Easy deployment on Windows, Linux, Containers, in your environment
• Minimise risk of malicious attack
• Ensure sensitive data is restricted from leaving high-security domains
• Full protocol inspection and validation
• Webservice API protection
• Enable secure remote desktop control
• Browse-down capability
• Minimum downtime to control systems
• Zero Day Attack prevention by removing malicious content from files

£8,384.51 a licence a year

• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at enquiries@4-secure.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

292468062036294

Contact

Peter Hoinville
0800 043 0101
enquiries@4-secure.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
• Service constraints: Cannot be sold/used in certain sanctioned countries
• System requirements:
  • Linux RHEL 6.1 and above
  • Windows 7 and above

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Normally on same day for weekdays. Support during weekends answered on next business day.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: WCAG 2.1 A
• Web chat accessibility testing: N/A
• Onsite support: Yes, at extra cost
• Support levels: 4Secure has a full technical team dedicated to the installation, configuration, and maintenance of TrustedFilter® Appliance Solutions. This technical team holds security clearance enabling administration of devices in government and defence facilities as well as a secure facility to carry out off-site diagnosis and repair. The technical team is flanked by a security architecture and information assurance team allowing customers to have an end-to-end deployment solution, covering design, implementation, and accreditation. ; ; Our support levels are based on impact any issues are to the customer, where response times are correlated with criticalness of error or failure.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: We provide onsite or remote training as well as providing sufficient installation and user guide documents for customer to use our products.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: We support end-to-end transfer of data. Only customer schemas and configurations are saved, and these can be extracted at anytime by customer. All customer user data is purged after contract closure.
• End-of-contract process: Software ceases to work after license expiry. We provide consultation for graceful contract close down

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: Yes
• Compatible operating systems:
  • Linux or Unix
  • Windows
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: WCAG 2.1 A
• Description of service interface: Online portal for customers to download a license key, application packages, and relevant documentation. Moreover, a tool is available to allow for product configuration.
• Accessibility standards: WCAG 2.1 A
• Accessibility testing: None
• API: No
• Customisation available: Yes
• Description of customisation: Users can configure the service to seamlessly integrate with their own network specifications. This includes the verification of a customer's bespoke TCP stream. Moreover, TrustedFilter allows the customer to specify the verification of data types by adding their own schema validations.

Scaling

• Independence of resources: Standalone Software is independently used by customer as it is a private instance per customer and is not impacted by customer usage intensity as there is the option of expanding available cloud performance by a higher tier.

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a CHECK service provider
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with another standard
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: TrustedFilter logs, configuration, and transformation files are available as text files where customer can export these text files at any desired point of time.
• Data export formats:
  • CSV
  • ODF
  • Other
• Other data export formats:
  • XML
  • JSON Files
• Data import formats: Other
• Other data import formats:
  • XML
  • JSON

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • Legacy SSL and TLS (under version 1.2)
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

• Guaranteed availability: TrustedFilter has an operational uptime of 99.9%. We use commercially reasonable efforts to make TrustedFilter Cloud available 24 hours a day, 7 days a week, except for: (a) planned downtime (which we give notice), and (b) unavailability caused by force majeure circumstances beyond Our reasonable control
• Approach to resilience: Available on request
• Outage reporting: Email alerts

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: Users are given a license with a specific expiration date
• Access restriction testing frequency: At least once a year
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: No audit information available
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: ISO9001

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: CyberEssentials and CyberEssentials+
• Information security policies and processes: We have a documented policy procedures for each of the standards we adhere to. Management are certified with security standards, and take actions to identifying any issues that arise relating to them. The reporting structure involves lower, middle and senior management being made aware and taking action to fix any observed vulnerabilities and risks.; As well as annual security training for all resources.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Conforms to a software development life cycle where changes are tracked in development pipelines that can merge into a single main pipeline and afterwards test plans are created to confirm no vulnerabilities are introduced into the software.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: Available upon request
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: Available upon request
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: Available upon request

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Equal opportunity
  • Wellbeing

  Equal opportunity

  4Secure is proud to be an equal opportunities employer. We are committed to equality of opportunity and to providing a service and following practices which are free from unfair and unlawful discrimination. We aim to ensure that no applicant or member of staff receives less favourable treatment on the grounds of age, disability, gender reassignment, marriage and civil partnership, pregnancy or maternity, race, religion or belief, sex, or sexual orientation, or is disadvantaged by conditions or requirements which cannot be shown to be relevant to performance. It seeks also to ensure that no person is victimised or subjected to any form of bullying or harassment. 4Secure values people as individuals with diverse opinions, cultures, lifestyles and circumstances and it applies to all areas of employment including recruitment, selection, training, deployment, career development, and promotion. These areas are monitored, and policies and practices are amended if necessary to ensure that no unfair or unlawful discrimination, intentional, unintentional, direct, or indirect, overt or latent exists.

  Wellbeing

  At 4Secure we believe that our employees are our most valuable asset, and their wellbeing is paramount to our success. We are committed to fostering a workplace culture that prioritises the physical, mental, and emotional health of every individual within our organisation. H&S - We are dedicated to providing a safe and healthy work environment for all employees. This includes adhering to all relevant health and safety regulations, regularly assessing risks, and implementing measures to prevent accidents and injuries. We recognise the importance of maintaining a healthy balance between work and personal life. We are committed to providing flexible work arrangements, where feasible, to accommodate the diverse needs of our employees and promote overall wellbeing. Mental Health Support - We understand that mental health is an integral part of overall wellbeing. We are committed to destigmatizing mental health issues, providing access to resources and support services, and promoting a culture of open communication and empathy. Physical Health and Wellness - We encourage and support initiatives that promote physical health and wellness among our employees and promoting healthy lifestyle choices. Professional Development - We are dedicated to supporting the professional growth and development of our employees. By providing opportunities for learning and skill development, we aim to empower individuals to reach their full potential and enhance their overall satisfaction and wellbeing. Community and Social Engagement - We believe in the importance of giving back to the communities in which we operate and fostering a sense of social responsibility among our employees. We encourage and support employee involvement in community service and volunteering activities. 4Secure are committed to regularly reviewing and enhancing our initiatives and programs to ensure they effectively support the wellbeing of our employees. We value feedback from our employees and will actively seek input to inform our ongoing efforts.

Pricing

• Price: £8,384.51 a licence a year
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: Customers that purchase a license have access the entire suite of features for 30 days post purchase.

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at enquiries@4-secure.com. Tell them what format you need. It will help if you say what assistive technology you use.