Armored Servers - Bringing Military Security to the Internet

Hypervisors and Virtualization @ Armored Servers

250$/month
SUN Fire V20z
Dual 2.6ghz AMD64 CPU's (64bit) - 4GB RAM
And Armored Servers' customized setup as shown below:
NOTE: If used, we legally purchase licenses for MS Windows

Contact Us for information or for a free Test Drive!

Armored Servers provides virtualization and the use of hypervisors in a Trusted environment to ensure isolation, separation, and containment of data. Trusted features will allow for actual data upgrades between two or more isolated environments.

MLS is defined in DOD-STD 5200.28, the National Computer Security Center's (NCSC) Orange Book:

"Multilevel Secure - A class of system containing information with different sensitivities that simultaneously permits access by users with different security clearances and needs-to-know, but prevents users from obtaining access to information for which they lack authorization."

In short, MLS allows you to have all your data--no matter what its classification--on a single network. It allows cleared users access to the classified data they need while allowing others access to unclassified data only. This is what we strive to achieve with MLS.

Armored Servers provides Virtualization and the use of hypervisors with Trusted UNIX systems For commercial, financial, healthcare, and government. All for a fixed monthly fee complete with managed/unmanaged hosting and 24x7 support.

The above diagram is an Armored Servers' custom MILS and MLS environment to provide virtualization. Virtualization will provide the ability to run Windows, Solaris, BSD, Linux, OS/2, and other platforms on the same system.

VirtualBox Features that are important to our clients:

Built-in iSCSI support
This unique feature allows you to connect a virtual machine directly to an iSCSI storage server without going through the host system. The VM accesses the iSCSI target directly without the extra overhead that is required for virtualizing hard disks in container files.

PXE Network boot.
The integrated virtual network cards of VirtualBox fully support remote booting via the Preboot Execution Environment (PXE).

Remote virtual machines (VRDP support)
VirtualBox, the graphical user interface (which can be viewed through VNC with your Armored Servers system), has a built-in server for the VirtualBox Remote Desktop Protocol (VRDP). This allows you to see the output of a virtual machine's window remotely on any other computer and control the virtual machine from there, as if it was running on the remote machine. VRDP is a backwards-compatible extension to Microsoft's Remote Desktop Protocol (RDP). Typically graphics updates and audio are sent from the remote machine to the client, while keyboard and mouse events are sent back to an RDP viewer on the remote client. On a Linux client, you could use rdesktop to connect. From a Windows Machine, you could use the RDP viewer that comes with Windows (usually found in Accessories/Communication/Remote Desktop Connection)

Remote USB
As a special feature on top of the VRDP support, VirtualBox supports remote USB devices over the wire as well. That is, the VirtualBox guest that runs on one computer can access the USB devices of the remote computer on which the RDP data is being displayed the same way as USB devices that are connected to the actual host. This allows for running virtual machines on a VirtualBox host that acts as a server where a client can connect from elsewhere that needs only a network adapter and a display capable of running an RDP viewer. When USB devices are plugged into the client, the remote VirtualBox server can access them. remote VirtualBox server can access them.

Secure labeling with VBoxSDL When running guest operating systems in fullscreen mode, the guest operating system usually has control over the whole screen. This could present a security risk as the guest operating system might fool the user into thinking that it is either a different system (which might have a higher security level) or it might present messages on the screen that appear to stem from the host operating system. In order to protect the user against the above mentioned security risks, the secure labeling feature has been developed. When enabled, a portion of the display area is reserved for a label in which a user defined message is displayed (INTERNAL, PUBLIC, SECRET, FINANCE, CUSTOMER1, CUSTOMER2, etc..). The label font color and background color can be optionally set as hexadecimal RBG color values.

Menu

Dedicated Servers