Removable Media Threat Protection

A Full Spectrum of Protection

XD Air™ is in use in more than a thousand government and critical infrastructure applications.

While removable media offers a quick, convenient, and easy means of data storage and transfer, it also creates complex security issues. Portable storage devices present an inviting vector for attacks on critical networks and systems as well as an opening for data loss and leakage. Tresys provides the strongest protection available for controlling the use of removable media in situations where it matters the most.

Proven Air Gap Transfer Appliance

Tresys XD Air is a secure laptop-based kiosk that provides a controlled mechanism for allowing data on removable media into or out of an enterprise. A proven solution to combat sophisticated attacks, XD Air uses the latest tools, filters, and deep content inspection techniques to detect and remove malware and other malicious content from portable media.

Nuclear facilities, utilities, and government agencies that need to satisfy strict U.S. government security requirements are turning to XD Air to protect critical operations and systems from:

  • Media-borne threats. XD Air prevents deep-level attacks, such as BadUSB, that use the device’s firmware to compromise computer systems.
  • Data-borne threats. XD Air protects against attacks launched using malicious content stored on the device, including viruses, malware and Trojans.
  • Supply chain threats. XD Air can verify that the content of media received from suppliers and other sources is authentic and has not been tampered with in transit.

Three Methods of Protection

Unlike antivirus-only solutions, XD Air implements three forms of protection to ensure that malicious content does not get transferred into a secure facility or network.

Known Good: XD Air performs deep content inspection on common document types and transfers only “known good” content to clean destination media. This process eliminates hidden data, macros, and executable content. Because it doesn’t rely on signatures of known malware, this process is effective against zero-day attacks.

Known Bad: All files are also scanned with multiple antivirus engines as an added layer of defense.

Known Source: By verifying the signature of digitally signed files and determining that content exactly matches a signed manifest, XD Air helps establish the trusted transfer of known-source files into secure facilities.


Meeting NRC Requirements

The Nuclear Energy Institute Cyber Security Plan for Nuclear Power Reactors states that secure data transfer must “ensure that the data, software, firmware or devices are free from known malicious code, Trojan viruses, worms and other passive attacks.”

This regulation helps protectagainst the full spectrum of portable media threats, including data- and device-borne threats. Traditional antivirus scanning can address someof these threats, but not the full spectrum. XD Air, with its deep content inspection of complex file types, provides a level of protection for nuclear facilities, utilities and other critical infrastructure operations that is not available with any other solution