manualshive.com logo in svg

ADDER AdderView Secure AVSC1102, User Manual

The ADDER AdderView Secure AVSC1102 User Manual is essential for maximizing the potential of your AVSC1102 device. Easily download this comprehensive manual for free from manualshive.com to unlock all the features and functionalities of your product. Empower yourself with step-by-step instructions and troubleshooting tips to enhance your experience.

Share
Download
background image















20













Threat

Solution

Data being sent to ports 
by means of faulty or 
subverted keyboards or 
mice causing the channel 
to switch and sending 
data in turn to each port.

Channel switching is controlled by the front 
panel buttons only with all keyboard hotkey 
or mouse switching capabilities removed 
from the design.

Data transfer by means of 
common storage.

USB ports support keyboard and mouse 

(and optional card reader) connections 

only. The product does not enable a USB 
memory stick or disk drive to be shared 
between computers. Unidirectional 
keyboard and mouse data signalling 
protects against data transfer across the 
switch.

Timing analysis attacks.

If a connection exists between a computer 
and a shared microprocessor system, it 
is potentially possible to determine what 
may be happening on the micro by timing 
the responses to repeated requests that 
the micro must service. For example, if 
a high data bit takes longer to transmit 
through the system than a low bit it may 
be possible to detect the pattern of data 
flowing between other ports by attempting 
to time the responses to otherwise normal 
requests. In the AdderView Secure, each 
port has a dedicated processor that only 
has input signals from the rest of the 
system. These input signals are only active 
when the port is selected. Consequently a 
timing analysis attack from one computer 
would yield no information about data 
flowing to another computer.

The user selects the wrong 
port. 

Only one simple method of selecting 

computers is provided. The selected port 
is clearly and unambiguously indicated on 
the front panel by means of colored lights 
adjacent to each key switch. For high levels 
of security, the screens of high and low 
security computers should be arranged to 
look visibly different in general appearance.

Threat

Solution

Forced malfunctions due 
to overloaded signalling.

It is potentially possible to create forced 
malfunctions by constantly and quickly 

sending a stream of valid requests (such as 
the request to update the keyboard lights). 

A well known example of an undesirable 
KVM malfunction is a “crazy mouse” 
which was quite common with early KVM 
switches and was caused by data loss on 
PS/2 systems with the result that the mouse 
darted around the screen randomly clicking 
and opening windows. The unidirectional 
design of the AdderView Secure ensures 
that the influence of signalling on one port 
cannot flow past the data diodes. This 
means that overload signalling on one port 
will not affect the operation of another 
port. USB signalling is not susceptible to the 
failure mechanism that caused the crazy 
mouse on PS/2 systems.

Signalling by means of 
shorting the power supply 
or loading the power 
supply.

Each port is independently powered by its 
USB port. Shorting the power supply on 
one port will not cause the power on other 
ports to be switched off. 

Tampering with the 
switch.

The switch is fitted with tamper protection 
measures.

Data transfer by means of 
a shared smartcard.

The switch provides a layer of isolation 
between the physical smartcard reader and 
the computer. This will counter threats 
associated with sharing the same physical 
card reader. The result is to deliver the 
same security level as would be present 
if multiple card readers were used and 
the card was swapped between them. 
A further level of security is provided by 
making the smartcard function absent 

from certain computers (by means of using 

cables that lack the yellow smartcard USB 

connector).

Non-authentic facsimile 
switches.

The enhanced models enable the 
authenticity of the switch to be checked by 
means of security certificates.

Summary of Contents for AdderView Secure AVSC1102

Page 1: ...AVSV1002 2 port AVSV1004 4 port AVSC1102 2 port AVSC1104 4 port AdderView Secure User Guide www adder com SECURE ADDERVIEW ...

Page 2: ...dations 10 Tamper evident seals 10 Links overview 10 Mounting 11 Making connections 12 Connections to computer systems 12 Connections to user console peripherals 12 Video display EDID information 14 Connection to power supply 15 Operation Important security features 16 Tamper evident seals 16 The security indicators 16 Anti subversion monitoring enhanced models only 16 Authentication checking enha...

Page 3: ...erational procedures must e g re staff vetting and training ensure that as far as is reasonably possible the product is received installed and managed in accordance with the manufacturer s directions This should also ensure that users are not malicious or hostile The product should be installed in an environment that is physically secure Additionally the security office in the organisation purchas...

Page 4: ...ccess Shielding extends also to the internal circuitry with strong levels of electrical crosstalk isolation between ports to protect against signals from one computer becoming detectable on another AdderView Secure units are available in two port and four port sizes Each size can be ordered in standard and enhanced versions The enhanced versions allow you to attach a smart card reader that can be ...

Page 5: ...04 XX Uni directional keyboard mouse data paths ü ü ü ü High port to port crosstalk isolation ü ü ü ü Heavy shielding for low emissions ü ü ü ü Single key per port for selection ü ü ü ü USB or PS 2 computer connections ü ü ü ü Tamper protection ü ü ü ü Secure DDC EDID strategy ü ü ü ü Smartcard reader support ü ü Combined keyboard smartcard reader support ü ü Advanced tamper protection reporting ü...

Page 6: ...er An optional smart card reader can be connected and used in conjunction with user authentication schemes Secure and shielded casing The casing is shielded to reduce electromagnetic emissions to an absolute minimum access apertures are minimized and vital access screws have tamper evident seals Clear and simple connections All connections are clearly marked to avoid any ambiguity Specially design...

Page 7: ...keyboard port The keyboard is powered down and reset at every switchover to clear stored states Mouse devices Although pointing devices don t generally process confidential data and are therefore considered to pose a lower risk you should ensure that the mouse used with the switch is approved against the security policy of your organization and plugged directly into the switch s USB mouse port wit...

Page 8: ...er hardware device As an additional precaution against theoretical leakage threats the circuitry associated with providing the generic card reader function is powered down and its memory is actively cleared at every channel switchover The switch does not decode or store the smartcard data flowing between the computer and the smartcard itself CO NS OL E IND OO R US E ON LY 5V 2 5 A CONSOLE When usi...

Page 9: ...yboard smartcard reader remains directly connected into the switch s USB smartcard port The combined keyboard smartcard reader is powered down and reset at every switchover to clear stored states The keyboard data and smartcard data are separated from each other as soon as they enter the switch The keyboard data is then sent uni directionally through the switch in the same way that data from a sim...

Page 10: ...k brackets Including four screws Shielded link cable VGA PS 2 keyboard PS 2 mouse Part code VSCD5 length 1 8m 6ft Shielded link cable VGA USB keyboard mouse USB card reader Part code VSCD6 length 1 8m 6ft Shielded link cable VGA USB keyboard mouse Part code VSCD7 length 1 8m 6ft Shielded link cable VGA only Part code VSCD9 length 1 8m 6ft Four self adhesive rubber feet ...

Page 11: ...ly seals could be added between each connection and the unit to highlight any connections that have been altered IMPORTANT Do not use the unit if the tamper evident seals are damaged Do not use if there are any signs of damage to the unit or its power supply Links overview The rear panel of the unit is well marked however the diagram below offers additional clarity on how best to arrange your conn...

Page 12: ... 11 Mounting The AdderView Secure unit offers two main mounting methods Supplied four self adhesive rubber feet Optional rack brackets CONS INDOOR USE ONLY 3 ...

Page 13: ...e appropriate link cable to the 26 way connector of the appropriate channel Connections to user console peripherals To connect a keyboard and mouse IMPORTANT To reduce the risk of radiated snooping do not use wireless keyboard or mouse devices See also Devices used with the AdderView Secure for advice about linking devices to the AdderView Secure unit 1 Wherever possible ensure that power is disco...

Page 14: ...e rear panel Ensure that the securing screws are used to maintain reliable links Note We strongly recommend that you use a video cable that has been correctly screened against signal emissions such as the VSCD9 cable CONSOLE Note The use of EDID information automatically provided by the video display could cause issues in certain high security installations please see the Video display EDID inform...

Page 15: ...oad a set of default data to the EDID memories and no data will be made available to the computers This provides a means of clearing information about previously attached monitors Note Most analog video cards will output a video signal without EDID information In such installations it may be acceptable to disconnect the DDC connections from the AdderView Secure so that no EDID information is made ...

Page 16: ...lar do not use an unearthed power socket or extension cable To connect the power supply 1 Attach the output connector of the power supply country specific power supplies are available to the socket located in the centre of the rear panel 2 When all other connections have been made connect the main body of the power supply to a nearby earthed mains socket NSOLE 5V 2 5A ...

Page 17: ...lock down state where the following will take place The computer channels become isolated and will not respond to the front panel buttons The green authentication channel indicator will illuminate The four red security will continually show the following flashing alert sequence Anti subversion monitoring enhanced models only The enhanced models AVSC1102 XX and AVSC1104 XX continually monitor their...

Page 18: ...deo display is not used during this process take care to enter characters correctly The first of the four red indicators will begin to flash 3 Enter the 8 digit Unit ID code and press Enter If the code is correct the first red indicator will illuminate and the second will begin to flash 4 Enter the 16 digit Query Code code from the Authentication Certificate do not enter the dashes and press Enter...

Page 19: ...uter network whereas channel 4 or channel 2 on two port versions has a red indicator and is generally configured to link with the highest security computer network Note If a keyboard key is held down during a channel change then the key will be sent to the selected computer upon release of the channel change button Do not hold down keys during a channel change Smart card reader Your AdderView Secu...

Page 20: ...or malfunction or unanticipated software bugs causing data to flow between ports Unidirectional data flow is enforced by hardware data diodes so data isolation doesn t rely on software integrity Subversive snooping by means of detecting electromagnetic radiation emitted from the equipment Carefully shielded metal case with dual shielding in critical areas Detection of signals on one computer by mo...

Page 21: ...rity computers should be arranged to look visibly different in general appearance Threat Solution Forced malfunctions due to overloaded signalling It is potentially possible to create forced malfunctions by constantly and quickly sending a stream of valid requests such as the request to update the keyboard lights A well known example of an undesirable KVM malfunction is a crazy mouse which was qui...

Page 22: ...eshooting section then we provide a number of other solutions Adder Technology website www adder com Check the Support section of our website for the latest solutions and driver files Email support adder com Fax in the UK 01954 780081 in the US 1 888 275 1117 Phone in the UK 01954 780044 in the US 1 888 932 3337 ...

Page 23: ...t exceed the cable s ampere rating Also make sure that the total ampere rating of all the devices plugged into the wall outlet does not exceed the wall outlet s ampere rating The power adapter can get warm in operation do not situate it in an enclosed space without any ventilation Warranty Adder Technology Ltd warrants that this product shall be free from defects in workmanship and materials for a...

Page 24: ... is connected d Consult the supplier or an experienced radio TV technician for help FCC Compliance Statement United States This equipment generates uses and can radiate radio frequency energy and if not installed and used properly that is in strict accordance with the manufacturer s instructions may cause interference to radio communication It has been tested and found to comply with the limits fo...

Page 25: ...Way Bar Hill Cambridge CB23 8SQ United Kingdom Tel 44 0 1954 780044 Fax 44 0 1954 780081 Adder Corporation 350R Merrimac Street Newburyport MA 01950 United States of America Tel 1 888 932 3337 Fax 1 888 275 1117 www ctxd com Documentation by Adder Asia Pacific 6 New Industrial Road Hoe Huat Industrial Building 07 01 Singapore 536199 Tel 65 6288 5767 Fax 65 6284 1150 ...

Reviews:

No comments

Related manuals for AdderView Secure AVSC1102

GBC 34.0109.41 Quick Start Manual preview
34.0109.41
Brand: GBC Pages: 2
Eaton AGswitch Instructions Manual preview
AGswitch
Brand: Eaton Pages: 36
LEGRAND Plexo Instructions Manual preview
Plexo
Brand: LEGRAND Pages: 140
3Com 3CB9E7 - CoreBuilder 9000 Chassis Switch Getting Started Manual preview
3CB9E7 - CoreBuilder 9000 Chassis Switch
Brand: 3Com Pages: 132
Fortinet FortiSwitch 424E Series Quick Start Manual preview
FortiSwitch 424E Series
Brand: Fortinet Pages: 11
Orei UHD-401MV User Manual preview
UHD-401MV
Brand: Orei Pages: 27
Cumberland PowerTrak Installation preview
PowerTrak
Brand: Cumberland Pages: 2
Pakedge Device & Software S8Mpdp Quick Start Manual preview
S8Mpdp
Brand: Pakedge Device & Software Pages: 14
Eneo 230033 Quick Installation Manual preview
230033
Brand: Eneo Pages: 19
Eaton LS ZB Series Original Operating Instructions preview
LS ZB Series
Brand: Eaton Pages: 12
3onedata TNS5000D Series Quick Installation Manual preview
TNS5000D Series
Brand: 3onedata Pages: 3
LINK-MI LM-AD01 User Manual preview
LM-AD01
Brand: LINK-MI Pages: 9
Allen-Bradley ferrogard gd2 Installation Instructions preview
ferrogard gd2
Brand: Allen-Bradley Pages: 4
InvoTek BlueHub User Manual preview
BlueHub
Brand: InvoTek Pages: 4
Kramer VS-28 User Manual preview
VS-28
Brand: Kramer Pages: 10
N-audio 8X7 User Manual preview
8X7
Brand: N-audio Pages: 8
SolidView PS-5008 User Manual preview
PS-5008
Brand: SolidView Pages: 39
EMKO TRANS MINI ATS User Manual preview
TRANS MINI ATS
Brand: EMKO Pages: 52

Brands by name

Popular brands

Load more brands