Simplifies mandatory access control The Titanium Security Suite simplifies Mandatory Access Control (MAC) policy creation, requiring only policies for protected applications, libraries, scripts and data files.

• Denies by default access to protected entities even from root level users
• Controls and restricts direct access to system hardware resources, such as peripherals and storage devices
• Prevents malicious modifications of system BIOS and firmware
• Enables secure software updates
• Encrypts and authenticates MAC policies as part of the secure boot process

Enables OS hardening and attack surface reduction Titanium removes unnecessary OS functionality which could help an attacker analyze a system for ways to alter execution flow and bypass security.

• Prevents unsigned module loading and enforces keychain controls
• Limits an attacker’s ability to debug or subvert protected applications and their libraries
• Removes kernel functionality and features

Remains secure during runtime and rest Titanium protects sensitive data, configuration files, and executables during runtime and rest.

• Authenticates protected entities, verifying that they have not been altered, and only decrypting files as needed (decryption keys are protected and stored out-of-band from attacker)
• Ensures sensitive applications, data files and configurations are cryptographically bound to a particular deployment hardware, defeating any effort t
• Verifies file signatures, checksums and provenance parameters (such as file location) on data and configuration files before they can be accessed by a protected application

Provides comprehensive certifications and compliance Titanium enables customers to rapidly and affordably address a majority of government technical IA / cybersecurity requirements with a single product.

• Will soon be certified as compliant with four distinct Common Criteria (NIAP) Protection Profiles making it perfect for use in National Security Systems
• Simultaneously receiving approval from the National Security Agency’s Commercial Solutions for Classified (CSfC) program as a composite solution for data at rest, both file-based and software full disk
• Comes with a comprehensive mapping to the NIST 800-53 risk management framework (RMF) controls