ION PRIISMS

PRIISMS 3.0 - Secure IT Administration Gateway

  • Single flexibile gateway for internal staff and external service providers
  • Ideal solution for remote IT administration service infrastructure
  • Complete forensic tracking of IT administration
  • Robust reporting of staff activity
  • Enables identification of questionable system activity
  • Increases confidence in third party service providers
  • FIPS 140-2 validated, Common Criteria certified

ION PRIISMS (Proactive Remote Integrated Intelligent Secure Management Solution) is a secure web-based gateway application that provides centralized control over security and administrative access policies of distributed and complex network device environments. Service providers / network administrators can configure, troubleshoot, and manage consolidated or geographically dispersed critical network devices, in- or out-of-band, remotely or from a central Network Operations Center (NOC). The PRIISMS architecture provides a scalable solution ensuring the highest availability for an unlimited number of connections.  

PRIISMS is a simple to use platform that provides a robust set of security features ensuring only trusted users can access the management interfaces of mission critical systems. In addition, PRIISMS provides the most comprehensive set of audit capabilities documenting what device(s) a privileged user has accessed, and what changes they made by recording sessions. PRIISMS provides the ability to control who can get access to specific devices and deliver confidence with visible transparent knowledge of what was done be it device access via SSH, Web, RDP or propriety client.

When used with the ION Secure Appliance, PRIISMS allows for customer controlled vendor and staff access. The ION solution package increases customer confidence and satisfaction while reducing customer barriers to delivering critical services.

The next generation, PRIISMS 3.0, features support the needs of both Service Provider and Enterprise customers enabling greater service delivery options and security /monitoring of “Privileged” user activities.

PRIISMS Plus, includes additional function and licensing flexibility above the standard PRIISMS edition.  

PRIISMS

PRIISMS Base features

User tunnels - secure access in to the PRIISMS Solutions Suite

  • Easy-deployment model
  • Secure method to bring third-party into PRIISMS without other VPN Solutions
  • Supports SHA512, TLS1.2, 2048 RSA keys
  • Licensing equal to number of concurrent connections. Additional licenses can be purchased
    Benefit: Easily extend secure access to third party (i.e. equipment manufacturers and consultants) to resolve system issues quickly. Eliminates need for VPN or Jump host access.

Enhanced support of complex endpoint connections

  • Target remote support of AVAYA IP Office Server Edition
  • Access multiple devices concurrently with a single click
  • Route to customer premise IP addresses as required by some client programs such as IP Office Manager
  • Unlimited endpoint sets, each endpoint set is limited to the number of concurrent connections in the PRIISMS license. Support for as many endpoints in a set as concurrent licenses (i.e. 5 concurrent connects allows for 5 endpoints per set and as many sets as needed)
    Benefit: Eliminate barriers to deliver services to complex systems and the use of Jump host PCs to access IP Office

Extend Higher Availability

  • Multiple instances of PRIISMS servers and Routing Devices.
  • Enhanced communication between solution elements (PRIISMS, Routing Devices, SA Appliances).
    Benefit: Highest level of system availability. PRIISMS system scales from small to global deployment with follow the sun support.

Enabling customer control of service provider access

  • Visual indication that customer has restricted access
  • Enabling this feature does not inhibit endpoint monitoring
    Benefit: Remove customer objectives to delivering services due to security requirements

Security enhancements

  • FIPS 140-2 Certified Encryption, Open SSL 1.0.2 based
  • Support for modern PKI standards
    - Signature Hashing: SHA2
    - RSA key length, 2048 or 1024 bit
  • Tunnel encryption: AES with CBC or GCM, 256 and 128 bit
  • API supplied or customer provided PKI certificates
PRIISMS Plus Includes
GUI Recording
  • Video recording of technician access
  • Helps establish technician traceability to device adds, moves, and changes
  • Forensic proof of system compromise
  • Definable by region window or entire desktop
    Benefit: Great training tool using real work examples of resolving systems issues. Key component of security forensics providing proof of breach. Quickly identify issues created by technical staff due to mistakes made during system administration connection.
Keychanger
  • Facility to periodically change PRIISMS login credentials to sites
  • Failsafe process
  • No user awareness of credentials
  • Unique credentials per customer site
    Benefit: Produce the most secure and automated key management structure reducing timely system key updates.
Licensing for unlimited endpoints
  • Removes limit on endpoint sets and user tunnel licenses
Features: 
  • Centralized Third Party Access Management
  • Multi-level Permissions Help Protect Devices
  • Increased Stabilization with Linux-to-Linux Networking
  • Enhanced Dial-Up Encryption
  • Manage all ION™ Devices with a Single Tool
  • FIPS 140-2 Validated
Benefits: 
  • Automatically audits third party access and activities (down to keystroke level), giving you unparalleled visibility and vendor management capabilities.
  • Single login gives your technicians immediate administrative access to customer premise devices worldwide.
  • Built-in Services SSL VPN™ technology takes the complexity out of customer IP addressing issues, automatically directing technicians to the right devices without the need for customization.
  • Makes it simple to stage patches/upgrades and then push them out to thousands of devices, saving you time and resources.
Specifications: 

ION PRIISMS Secure Administration Gateway System Requirements - Hardware Platforms

  • 8 GB RAM
  • 60 GB Hard Drive
  • Microsoft® Windows® 2012
  • SQL Server or Express 2012 or 2014 

    Optional PRIISMS Plus Video Storage
  • NAS SMB file share with 1 TB free space

ION PRIISMS Routing Device (RD) Appliance

Administration/Management

  • Local: Aux port (300 bps to 115.2 Kbps)
  • Remote: PRIISMS compliant
  • Storage Capacity: 4 GB
  • Diagnostic LEDs: Power, Activity
  • Dual Gigabit LAN

Physical Description & Operating Environment

  • 12in W x 1.75in H x 11in D; 6 lbs. 
  • Power: 100-240VAC 50/60 Hz, 30 watts/100 BTU/hr
  • Operating Temperature: 32º to 113ºF (0º to 45ºC)
  • Storage Temperature: -4º to 140ºF (-20º to 60ºC)
  • Humidity: 10% to 90% non-condensing

Approvals & Certifications

  • FCC Part 15, Class A; EN55022, Class A; EN50024
  • UL E232655, ITE 55DB, CE
  • RoHS/WEEE

Options

  • Shelf, Wall, Rack Mount
  • 48 Volt power supply
  • Serial cables

ION PRIISMS Secure Administration Gateway System Requirements - Virtual Environment

  • ESXI 5.5 or 6.0
  • 8 GB RAM
  • 60 GB Hard drive minimum
  • Microsoft® Windows® 2012
  • SQL Server or Express 2012 or 2014 
  • Requires 1 dedicated network interface

    Optional PRIISMS Plus Video Storage
  • NAS SMB file share with 1 TB free space

ION PRIISMS RD as VM

  • ESXI 5.5 or 6.0
  • 4 GB RAM
  • 4 GB Hard drive
  • Requires 2 dedicated network interfaces