The SecureXperts Micro SD solution is an encryption unit known as a “secure element”, or cryptographic security module (CSM) that exceeds the necessary requirements for NIST and DoD derived credential enabled mobile devices. The secure element is FIPS 140 Level 3 compliant chip and provides high assurance key management and encryption capabilities. Using this solution, only approved software is able to execute on the SD micro unit, which validates the integrity of the software upon each power up. The secure element can support up to 512 keys and 32 certificates, well above the amount required for the PKI Federal Bridge and the DoD PKI. The supported libraries a full NSA Suite B, including AES and Elliptic Curve Cipher Suites.
SecureXperts develops and provides embedded technology services that works with NIST approved cryptographic micro-SD cards are FIPS 140-Level 3 validated and provide Level of Assurance LOA-4 credentials (network authentication/digital signing/digital encryption) to physical security manufacturers and systems developers requiring compliance and certification/validation within high assurance environments.
For the purposes of derived credential implementation, hardware based cryptographic micro-SD is most well suited because it can generate federally and commercially trusted public/private key pairs on the cryptographic module externally, instead of using the device hardware. This separates the security functions of the devices from the processing (cryptographic co-processor), making the system easier to design, test, and evaluate at the board, component, and chip layer.
Smart phones, tablets, laptops computers, and other specialized devices (access control card readers, intrusion detection devices, explosives/ chemical sensors, video surveillance cameras) can use a this cryptographic Micro-SD card for law enforcement, national defense, and high assurance critical key (CKIP) infrastructure protection systems, and Industrial Control Systems (ICS) applications, making them extremely robust and resilient to attack.
A cryptographic micro-SD card acts in a similar manner to the smart chip on a smart card. The processors on a cryptographic micro-SD card allow for the generation of a public/private key pair with a restriction on the exportation of the private key. The private key can be PIN protected in the same way that the smart card user PIN protects its private key. Since the CAC is too large to be plugged into a mobile device, a FIPS 140 approved cryptographic micro-SD card is an extremely viable option to implement secure derived credentials on mobile devices. As derived credentials become more defend and more widely implemented by NIST and DoD, commercial companies will continue to develop more specialized and more customized NIST approved cryptographic micro-SD cards and mobile devices.
Mobile devices, workstations, servers, switch, firewalls
Federally Trusted Certificate Authorities
Embedded Crypto API for video Management Systems
Secure HSM Interface for physical devices
Certificate Validation/Enrollment across federated systems
Enterprise Interconnectivity with disparate physical security systems
Hashing and cyclical redundancy checks of digitally stored video
Federal Guidelines (FIPS 140-2 Level 3) and Federal ICAM guidelines
Modules Supported SDIO Physical Layer Standard (mini/micro) version 2.0
Emerging Standards NIST Supply Chain Management, Digital Media Source and Authentication