SandboxAQ Launches New Security Suite Aimed at Enhancing Cryptographic Agility

Industry / Press Release January 18, 2024

January 17, 2024 -- Cryptography is the foundation of data protection. However, it is often opaque and hard-coded in systems, making it hard to eliminate vulnerabilities, difficult to show compliance and complex to implement upgrades.

The SandboxAQ Security Suite is an end-to-end, cryptographic-agility platform that provides a full inventory of existing cryptography use, including vulnerability and compliance analysis, as well as a path to centrally-managed, robust and agile cryptography. The result is protection from today’s attacks, as well as security against the future threat of a large-scale quantum computer.

The SandboxAQ Security Suite will provide organizations with a full range of cryptographic management capabilities, including:

  • Full visibility, monitoring and control of cryptography
  • Automatic analysis and reporting on cryptographic security posture
  • Cryptographic policy management and enforcement
  • Seamless upgrades to new cryptographic protocols
  • Compliance with changing cyber threats and requirements

The emergence of large, fault-tolerant quantum computers poses a significant threat to current public-key cryptography, leaving sensitive data and systems vulnerable to attacks. SandboxAQ was selected by the NIST’s National Cybersecurity Center of Excellence for its Migration to Post-Quantum Cryptography project, which partners with industry to help the government develop best practices to transition from current public-key cryptography to post-quantum cryptography algorithms.

SandboxAQ has also formed strategic alliances with leading systems integrators Deloitte and EY to help enterprise customers securely transition to the quantum era.

Discover

The SandboxAQ Security Suite provides a first-of-its-kind, 360-degree view of your cryptography using three types of analyzers:

Network Analyzer captures network traffic and identifies cryptography used to protect data in transit.

Application Analyzer detects and records all calls to cryptographic libraries made by an application at run time, identifying vulnerabilities and policy breaches.

Filesystem Analyzer scans files to find and parse cryptographic objects in data at rest.

Manage

The Control Center is the core of the SandboxAQ Security Suite. It provides a comprehensive, actionable dashboard view of your cryptographic infrastructure, including artifacts, libraries, algorithms, and protocols. The Control Center also includes benchmarking tools to monitor cryptographic performance.

Analyze cryptographic inventory.

Cross-reference cryptographic use in your network, applications, and filesystems.

Identify vulnerabilities and cryptographic algorithms that do not adhere to policies such as FIPS 140-2, PCI DSS, or other internal requirements.

Integrate cryptographic inventory, analysis, and alerting into your CI/CD and DevOps toolchains for application tracing and monitoring.

Enable remediation by integrating with JIRA, GitHub, IDE, and other DevOps issue tracking tools.

Monitor cryptographic performance.

Remediate

Available for select preview partners, Security Suite will enable remediation and supervised enforcement to respond to off-policy violations. The module will allow immediate response to vulnerabilities and out-of-policy algorithms, and remediate with real-time cryptographic algorithm and/or protocol switching, without having to re-architecture your IT, minimizing costs and time.

Transition your IT infrastructure to agile cryptography with supervised automation to reduce risks.

Easily adhere to new cryptographic requirements and switch between them without requiring additional development or maintenance.

Integrate and operationalize cryptography for deployment.

Remediate and enforce off-policy algorithms.

Achieve full sovereignty over your cryptography.