 |
| Visit the website of any security company and
you might be forgiven for thinking that security is mostly about
having the best CCTV, Clever Access Devices, Alarm Systems or other types of hardware. Well
security isn't primarily about any of these
things, rather it’s mostly about
the understanding of undesirable human behaviour, and
if this can't be changed, then putting effective systems in place to
at least control it.
Of course
in many cases applying technology is essential,
generally though, it’s only one part (and sometimes just a small part) of an
effective solution. As truly independent
consultants, we will take the time to understand what your
|
 |
concerns are, to
highlight areas that need attention, and
then to work with you to develop overall
strategies that fulfill expectations.
Whilst we certainly don’t rest on the technology we
will, where required, devise and recommend systems that would effectively serve to increase the protection of your staff, your property and of your data and networks. Using
tried and tested methodology we'll
system-engineer your solution, and if, for any reason, any part of it can't be found
off the shelf, then we'll design it for you and, in
that event, advise you how to maintain it. |
|
|
|
|
 |
 |
| PLUGGING
GAPS: If you
have a security issue in your
organisation it's likely to be a newly
discovered "hole" or breach of
some kind. Whether the suspected deficiency
is physical or non-physical - affecting
your data on the network for example, we
can assist you to identify the source, and
then help you to fix it if required. We
can advise you on devising strategies to
exercise your current system to identify
weaknesses and so reduce the potential
for future breaches. |
|
|
|
| EXTENDING
YOUR SYSTEMS:
Increasing the reach of your surveillance
can also mean adding new technologies to
existing installations. If this is the
case, then it is crucial that
integration is very carefully considered
prior to any expansion. Just because
two systems use the same communications
protocol, for example, is
certainly no guarantee that they can
talk together. Even if messages
can be successfully passed between
operational units, the underlying
assumptions of what such messages actually
mean to each component often needs
rationalisation. We can help by
writing any necessary software to do this
and we can advise you on potential
difficulties that may arise - at the
planning stage. |
|
|
| EQUIPMENT
SUPPLY: We
primarily act as systems designers or
consultants for a fee. Although some
solutions can be met by using standard
commercial components or sub-systems,
invariably these need to be worked on in
some way, or at least bench tested,
prior to installation. It usually
makes sense therefore to procure part,
if not all, of these items for you,
although we do not guarantee that we'll
be able to purchase at a lower price
than you can. |
|
| Being
independent means we're not tied to any
particular manufacturer. We can
advise you on the purchase of equipment
and systems, including serviceability
and maintenance. In cases where a
substantial part of the equipment is
designed (or in the case of software
written) by us, the equipment cost
will usually be part of the contract
price we have agreed with you before the
start of the contract. |
|
| NEW
INSTALLATIONS: A
"turn-key system" from a
corporate organisation is one possible
answer to finding an integrated
solution. However it's expensive,
will lock you into the lead supplier and
the reality is that such systems don't
often provide the exact functionality
required. Chelsfield can help you
with the entire process of finding an
overall solution to new
installations - no matter what your
industry. We are able to integrate
physical security requirements with your
data and communications infrastructures
creating a seamless schema. |
|
|
|
|
|
|
|
| Whilst there
are a number of well known cipher algorithms
that could have been used, these were
subject to US export restrictions at the
time and so we developed our own.
(US restrictions have now largely been
relaxed for most countries). The
Chelsfield cipher offers strong encryption,
is fast and is easy to deploy. The code was originally written to provide high level security for one of Chelsfield's clients but now we have produced a generic version available to all clients. |
|
| The technique is platform independent and has the advantage of
virtual-key transparent operation where required.
However this will necessitate the
addition of routines within the library
- depending on the application. The code may be used
to encrypt any binary data stream and it’s so fast it may be used
"on-the-fly" in many applications. For Microsoft operating systems,
the software can be packaged as an
in-process server. One advantage is that
additional custom routines can be
written which can be deployed inside a Dynamic Link Library
(.DLL ) file, or run as a background NT service on Win NT/2000/XP/Vista platforms. |
|
| The diagram
represents the main sub-components in
the encryption library core. The
polymorphic function is achieved by a
proprietary rotating barrel. This device
ensures that there are negligible
collisions within the key HASH and it
also provides a unique initialisation
vector for each pass of the
PRNG. |
|
 |
|
| The Chelsfield
encryption library has a proven record.
It is currently being used by numerous
corporate organisations as it is
supplied as a licensed third party
component within their own
applications. If you are
interested in how Chelsfield Consultants
can assist you to secure your data flow -
either at the physical or application
level, please give us a
call. We'd be happy to discuss
whatever interest or concerns you may
have in complete confidence. |
|
|
|
|
|
|
