The Thales Secure Inter Domain Gateway Service securely manages the boundary between the Customer’s own security domain(s) and other external networks or security domains. These domains may be at different security or Impact Levels, or may be just a separate domain at the same security level, for which the customer needs to exercise control over the flow of information, access and files. In all cases the Inter Domain Gateway Service will be configured and managed to execute the Customer’s own security policies. The policies will define the type of file, the content rules, file format checking, source and destination address restrictions. The Inter Domain Gateway Service will then manage files attempting to transit the boundary checking for prohibited words, illegal file formats, protocols, or any malware including applications embedded within file. The transfer of files is often manually controlled by the Customer’s appointed staff by placing files for transfer into a designated directory. The Gateway will transfer all ‘clean’ and permitted fie formats to a directory within the other security domain. Automation of this process may be considered on a case by case basis.
Thales Inter Domain Gateway Services provide many of the necessary security risk mitigations that contribute to lowering the SIRO’s security risk profile mitigating risks identified in the Customer’s RMADS. The Service enables a safe, controlled and secure transfer of files helping to facilitate ‘joined up government’, whilst protecting the Customer’s secure information held at IL2, IL3, Official and Official Sensitive level.