SupportContact UsCorporate ProfileHome
 

MULTIFUNCTIONAL SECURE GATEWAY

FDMP VIRTUAL NETWORK OVERVIEW

DIA AND DISA CERTIFIED

MSG USES COMMERCIAL-OFF-THE-SHELF (COTS) COMPONENTS

  • Uses COTS personal computers (site independent) which are reusable for future requirements

  • Uses COTS peripheral equipment (RAIDS disk controllers, laser printers, etc.)

  • Uses COTS operating system (Microsoft Windows NT)

  • Interfaces with COTS E-Mail systems (MAPI, Outlook, Microsoft Exchange)

  • Connects to networks via COTS network interface cards

MSG IS VERSATILE AND SCALABLE FOR VARIETY OF APPLICATIONS

  • Site or centrally configurable to match individual site requirements

  • FDMP Virtual Network Protocol supports TCP/IP with FDMP message protocol (provides message integrity and accountability) and Triple DES. Can be configured as TCP/IP client or a HUB supporting up to 128 remote concurrent clients.

  • The MSG maintains an on-line archive of all messages processed by the system. This permits users to perform message search and trace functions on messages previously processed.

  • DMS CAP certified and DIA certified for GENSER, DSSCS and consolidated GENSER/DSSCS operation

USER DEFINED MESSAGE PROFILING

  • Destination  Routing Indicators in combination with Originating Station Routing Indicator (OSRI) and Content Indicator Code (CIC)

  • Plain Language Address (PLA) and office symbols

  • Key Word/Phrase found in message text

  • Direct Routing by MSG operator to force message to specific destination

  • Complete log of message origination, system routing and delivery down to each E-Mail recipient.

  • A Dirty Word/Phrase Filter (PERSONAL FOR, etc.) prohibits message delivery (i.e., the proliferation of a message across E-Mail) to any devices not specifically authorized by the System Administrator

SYSTEM SECURITY

  • Certified multilevel secure for message delivery

  • Certified system high when processing DSSCS traffic

  • Microsoft Windows NT is C2 certified; MSG uses NTFS secure file system for messages and the NT Registry for retention of security Administrator device security settings.

  • MSG application software contains multiple and redundant security checks

  • CRC on all messages processed (computed on input and validated before output)

  • Labeling of messages and output devices to prohibit community and security violations

  • E-Mail Authorized Releaser List is maintained by MSG Administrator

  • Security filter in communications controller microcode to detect messages exceeding port classification labeling (port is disabled if violation occurs)

  • Security is checked both when placing message in queue and when retrieving message from queue

  • Retrievable Audit Trail, Message Log, Error Log and Master Station Log

  SOFTWARE SUPPORT

  • Cavalier provides a software support program on an annual fee basis.

  • This program keeps the products current with operating system releases and changing requirements in the DMS system

  • Specific requests for unique functionality are handled on a case by case basis.

  • Cavalier is receptive to discussing additional support requirements (Help Desk, Installation Support, On-Site Support, Training, etc.)

  • Cavalier maintains an Operations Manual and conducts a training course for the MSG

OVERVIEW

The FDMP Virtual Network enhancement to the MSG system provides the user with a powerful network based message delivery capability. FDMP Virtual Network provides the user with accountability for message delivery, integrity of message data during transmission and guaranteed privacy of message content. The MSG system can be user configured as an FDMP Virtual Network HUB concurrently supporting up to 128 remote clients, an FDMP Virtual Network client that communicates with the HUB or if desired a combination of both to support multiple levels of hierarchy.

FDMP Virtual Network incorporates all of the features associated with store-and-forward message switching and simply replaces the usual serial communication links with network connectivity. The MSG connects to the network using a COTS NIC interface and exchanges messages via the TCP/IP with FDMP overlay protocol. As opposed to e-mail delivery systems in which multiple mail servers may reside between the message sender and receiver, TCP/IP provides a virtual connection linking the message sender directly with the message recipient. This direct virtual connection eliminates both the delivery delay and lost message hazard associated with sending the message via multiple mail servers.

PROTOCOL

The MSG FDMP Virtual Network protocol is comprised of three components. First, TCP/IP the transport protocol is responsible for exchanging packets of message data directly between the sender and the receiver.

Second, atop the TCP/IP layer is the DIA designed Full Duplex Message Protocol (FDMP) that assures message integrity. Each block of the message is numbered to assure that the entire message is delivered. When the final block of the message is received and the message CRC is validated, the message is safely stored and a message acknowledgement is sent to the transmitter. Both the transmitting and receiving MSG systems generate message log entries providing positive message accountability.

Third, if data privacy is a concern, the entire message can be protected via Triple DES encryption. New and unique encryption keys are exchanged using the Diffie-Hellman algorithm at the beginning of each FDMP Virtual Network session. The result is that when multiple clients are active at a MSG HUB, each client is using a unique set of encryption keys.

FDMP VIRTUAL NETWORK HUB

When the MSG is configured as a FDMP Virtual Network Hub messages can be exchanged concurrently with up to 128 remote clients. Operating as a store-and-forward switch, messages are profiled and routed to the remote client device based upon Destination Routing Indicator, Plain Language Address/Office Symbol, Key Word/Phrase or combination of above criteria. If the remote client connection is active, the message is delivered at once. If not active, the message is stored and delivered when the remote connection is established.

The addition of the FDMP Virtual Network capability to the feature rich MSG system does not eliminate any of the current MSG system functionality. Serial communication circuits may be used as desired, either as the primary or as an alternate message delivery path. Additionally, connectivity to e-mail and other LAN based systems is supported. In summary, the flexibility in connectivity along with the scalability of the MSG allows each user to configure a system tailored specifically to their unique requirements.

FDMP VIRTUAL NETWORK CLIENT

The difference between a FDMP Virtual Network Hub and a FDMP Virtual Network Client is simply the way the user has configured the system. In fact, a single MSG can be configured to support both. Messages processed by the client system can be profiled, routed and automatically exchanged between desktop e-mail writers/readers and the FDMP Virtual Network Hub.