CERBERUS

Vulnerabilities Threats Countermeasures

Document Security

FIPS PUB 140-1
DOD 5220.22-M
NCSC TG-25
FIPS PUB 81
FIPS PUB 180-1
DOD 5200.28-STD

INFOSEC
Cryptosystems
Passphrases
Windows® Leaks
System Settings

QUESTIONS?

This software cryptographic module has been designed to meet or exceed Security Level 1 of FIPS PUB 140-1. It is fully compliant with FIPS PUBs 46-3, 74, 81 and 180-1, as well as ANSI X9.17, and incorporates validation tests from those standards and from NBS Special Publication 500-20 as built- in self-test routines. Its incorporation of high-grade cryptographic algorithms ( specifically, CBC-mode triple-DES with 168-bit keys ), and its lack of a key recovery mechanism, preclude its licensing for export from the United States under current Export Administration Regulations ( 15 CFR 730 - 774 ). The design of this software incorporates no covert channels to intentionally leak keying information.

If you've ever held a Security Clearance, you'll recognize the image of the Classified document safe used in our Secure and Open symbols. Once you've dragged-and-dropped a group of files onto Document Security Manager, they are "classified" as sensitive documents whose security status will be monitored until they are Destroyed or Declassified. The program will automatically re-encrypt all such documents you've decrypted. Unlike e-mail encryption software, it will also shred all those extra copies that Windows® made while you were working on them.

EASY to USE Document Inventory gives you centralized access to all of your sensitive files, while inhibiting identification of encrypted files for traffic analysis by type or by name. All your encrypted files are left in their original folders, with unchanged names and type-extensions. Files you choose to decrypt are opened automatically for you by their associated programs, after they have passed an SHA1 integrity check. All such decrypted files are automatically re-encrypted during program shut-down.

You can Send a copy of a Document with your private masterkey replaced by one generated from another username-plus-passphrase for communications with another user. This copy is automatically sent to your MAPI-enabled e-mail program which opens a new message with it attached. Clicking upon such an attachment on a received e-mail automatically prompts Document Security Manager to decrypt it.

PLUGS WINDOWS® LEAKS All discarded files are automatically Sanitized per DOD 5220.22-M by multiple disk overwriting (including all cluster tails), and all cache buffers are flushed in order to prevent Windows® from ignoring the overwrites. Functions are also provided to Clear the Windows® swapfile of leaked passphrases or un-encrypted text, and to Clear your disk of the "temporary" copies that Windows® makes of any document that it prints-out. Such "deleted" data scavanged by Windows® into the tails of new files, and by Word®, Excel® and similar programs into the interior of their OLE files, are also Cleared. These are countermeasures to the forensic software that exploits such Windows® leaks to "recover" files encrypted with most e-mail encryption software.

SELF-TESTING Not only is each file's integrity checked upon decryption, but the program itself is tested for tampering (with secure hashes per FIPS 180-1). In addition to cipher and hash validation tests, you can also perform FIPS 140-1 tests on the user-seeded key generator that also produces bit streams for disk overwriting per DOD 5220.22-M.

CRASH-PROOF and UPGRADE-PROOF Unlike software that encrypts everything on your disk, there are no decryption delays in accessing dynamic link libraries or drivers to crash programs or your system. Our encryption won't interfere with backup software, or cause long delays when you want to shut-down your system. If power transients or other programs crash your system during encryption or decryption of a file, it will not be damaged. Any Document (or Inventory file) encrypted by any version of Document Security Manager (even the original 16-bit version), can be decrypted by any other version running on any supported platform (Windows 3x, Windows 9x or Windows NT4.0).

More on our Triple-DES ENCRYPTION

More on our DOD 5220.22-M SANITIZING

PROFESSIONAL

VERSION

For users with large numbers of encrypted files or the obligation to preserve the data for others, the Professional version also includes encrypted document labels and the ability to generate shared secret keyshare diskettes. The labeling creates a shadow directory to hide sensitive names. Multiple keyshare diskettes allow emergency access by multiple trusted parties acting together, but any one diskette is useless to attackers. Both features are solely at the user's discretion.

There is also a pop-up shredder window for easy drag-and-drop destruction of groups of files by sanitizing per DOD 5220.22-M.

A cryptographically strong (14 bits per word) nonsense-phrase generator is also included, for users who need to change passphrases often. The ANSI X9.17 key generator addresses words pseudo-randomly from a 16K-word dictionary. With the 1000 triple-DES encryptions of our masterkey set-up, four such words yield 30 characters with a DES workfactor of almost 68 bits vs 51 bits for an English phrase.

Since the pseudo-random nonsense-phrase is merely accepted with a mouse-click, this also provides a way to securely change a compromised passphrase, even in the presence of a keyboard sniffer on a compromised machine. Keyboard sniffers can be blocked from intercepting the passphrase by using a pair of your emergency access keyshare diskettes, rather than keying-in the passphrase for authentication. These features are included in the Professional and Corporate versions. We provide a Personal version without these features, at a lower cost, for individuals who don't handle many sensitive files or often need to generate secure passphrases.

EASY TO INSTALL

Just download and run the free demonstrator installation package for your system: docmgr32.exe for Windows 95, Windows 98, NT4/SP3+ or NT5(Win2K) platforms; or docmgr3x.exe for Windows 3.1, 3.11 or Windows for Workgroups 3.11 (requires Microsoft's free Win32s upgrade for 16-bit systems.) If, for some reason you can't use the Win32s package on your Win3x system, there is a (slower) 16-bit version. ( NOTE: Do not try to install Win32s on Win95/98/NT - these are 32-bit systems, which do not need it. )

Forensic software exploits Windows® TEMP space and swapfile leaks to bypass even the strongest file encryption. When Document Security Manager starts, it analyzes your system settings. If you permit it to, it can reconfigure the relevant system settings so as to maximize the effectiveness of its forensic software countermeasures.

NOTE: Windows 4.9/Windows ME will not permit the installation of 16-bit TSRs, such as Microsoft's own RAM disk from Windows 4.0/Windows 95 and Windows 4.1/Windows 98. As our built-in utility for optionally configuring TEMP space as a RAM drive on non-NT platforms relies on Microsoft's RAMDRIVE.SYS, that option will be unavailable under ME. (There are third party 32-bit RAM drives that some of our users are using instead, but our products' configuration utilities don't automate their set-up.)

NOTE: Our individually licensed software cryptosystems incorporate high-grade ciphers (specifically, CBC-mode triple-DES with 168-bit keys). They do not incorporate either overt Law Enforcement Access Fields or covert channels to leak keying information. They are thus considered "encryption items" - Category EI in the Commerce Control List, 15 CFR 774, subject to the Export Administration Act, 50 USC 2401. The penalty for their export from the United States without a BXA license, except to Canada is a fine, not to exceed $1,000,000 and/or a prison term, not to exceed 10 years, for each offense.