Security
| QuipaLoop has been designed for security from the ground up. Underneath the hood is a complex security process and method that is based on the establishment and preservation of trust between QuipaLoop devices. QuipaLoop security is maintained at the same high level regardless as to whether the QuipaLoop device is operating inside your LAN or on the WAN, enabling a better trade-off between access and security.
Discrete loops between people, resources, services and offices reduce exposure to security threats. All data transiting the loop is secured and each loop is independent of the underlying network infrastructure. QuipaLoop security is compartmentalised which means that if there is a breach in one QuipaLoop component, it will not automatically give access to other components. The ability to set-up and easily dissolve loops on the fly, makes it simple to manage security administration around staff turnover and compromised access points. All data in transit is AES256 encrypted. Session encryption keys used for device-to-device transactions are changed at regular and random time intervals. QuipaLoop device connections can always be outbound which means no port forwarding or inbound ports need to be allowed on a firewall that is protecting the end services. QuipaLoop has been designed to work with corporate network policies so that its usage can be controlled by the corporate administrators. QuipaLoop will not do anything to subvert the policies that were put in place by the corporate administrators. |
Anywhere, Anytime, Everywhere
|
What’s So Secure?
| Secure Connection Broker (SCB) | The SCB is the only required publically addressable service in the QuipaLoop system. The SCB does not store an IP address registry. |
|---|---|
| Secure Waiting Room | When a user logs into QuipaLoop they only gain access to a ‘waiting room’ and the waiting room cannot contact loops or grant access to services. |
| Secure Devices | QuipaLoop devices mutually authenticate each other. They confirm the identity of the other device and that it has awareness of itself. Devices entering a loop are independently mutually authenticated by up to two devices already in the loop. |
| Secure Quipa Loop | A loop is a virtual construction created between trusted QuipaLoop devices. The loop operates independently of the underlying network and maintains its own security and integrity. |
| Secure Data | QuipaLoop data in transit is encrypted specific to a loop, device and user. Data is never decrypted in transit and is not vulnerable to 3rd party sensing. |
| Secure Networking | Services can be securely aggregated from multiple networks while keeping the individual subnets separated. |
| Secure From Threats | QuipaLoop is tamper proof and has built in protection from many common security threats:
|