Alexandersikov, Dreamstime.com
Secured Dreamstime Alexandersikov 150869360

Securing Enterprise Laptops

April 26, 2021
The multilevel LynxSafe system uses hypervisor technology to secure laptops and PCs.

Lynx Software Technologies LynxSafe targets user compute platforms that must meet mandatory compliance requirements like those outlined in the Commercial Solutions for Classified (CSfC) specification  (see figure). It allows enterprise IT teams to utilize hypervisor technology to create isolated partitions that can run multiple secured operating systems.

The multilevel system supports different levels of security for business and personal domains that’s even more important with many more people working remotely due to COVID-19. This forces a zero-trust environment to isolate and secure applications that users will need in their daily activities. The technology can also be applied to secure endpoints like edge servers.

LynxSafe is based on the LynxSecure separation kernel, which is design to be secure and to provide secure isolated virtual-machine environments for operating systems such as Linux or Windows. It can run VPNs in isolated partitions to force communications through secure connections as well as preventing attacks through the isolated operating systems. It also can provide secure storage where the encryption is managed outside of the isolated operating systems.

Secure key and data storage as well as remote management allow IT management to control what connections are allowed between particular operating systems and applications on a device and the VPN-linked networks at other locations that could be enterprise sites or a secured cloud environment. Meanwhile, users can run unsecured applications in other partitions.

User operating systems like Linux and Windows aren’t modified in any fashion; therefore, existing applications will work normally. It’s simply the connections and storage they can use, which is limited—not by the applications or operating systems themselves—but rather the LynxSafe software.

With such external management, features like encrypted storage and secure boot can be managed by IT. Thus, even if a laptop is lost, access to the storage and use of communication will not be possible. Most operating systems like Linux and Windows have this type of feature, but if they’re compromised then all bets are off. If an operating system running under LynxSafe is compromised, it will not have access to compromise the secured storage or VPN that’s inaccessible with the operating system.

Sponsored Recommendations

TTI Transportation Resource Center

April 8, 2024
From sensors to vehicle electrification, from design to production, on-board and off-board a TTI Transportation Specialist will help you keep moving into the future. TTI has been...

Cornell Dubilier: Push EV Charging to Higher Productivity and Lower Recharge Times

April 8, 2024
Optimized for high efficiency power inverter/converter level 3 EV charging systems, CDE capacitors offer high capacitance values, low inductance (< 5 nH), high ripple current ...

TTI Hybrid & Electric Vehicles Line Card

April 8, 2024
Components for Infrastructure, Connectivity and On-board Systems TTI stocks the premier electrical components that hybrid and electric vehicle manufacturers and suppliers need...

Bourns: Automotive-Grade Components for the Rough Road Ahead

April 8, 2024
The electronics needed for transportation today is getting increasingly more demanding and sophisticated, requiring not only high quality components but those that interface well...

Comments

To join the conversation, and become an exclusive member of Electronic Design, create an account today!