|
After the security vulnerability of the logging library
for Java applications was rated "Level 4 / Red" by the German
Federal Office for Information Security, we can safely say that this
vulnerability does not affect any KVM applications from G&D.
Configuration tool »Config Panel 21«
is secure
The potential cyber attacks many people are currently
worried about are no threat to our HTML5-based, in-house developed web
application Config Panel 21. Since Java has been perceived as a security
risk for a while now, we decided to no longer use it for our KVM
solutions a few years ago.
Earlier generation devices still using Java for
web-based configuration also do not pose a security risk since they are
not connected to the affected Log4j library in any way. Your KVM
installations are secure, and you can continue to use them without worries.
Secure KVM-over-IP
We know from experience that such critical issues always
cause uncertainty. But let us assure you that even our IP-based KVM
systems are absolutely secure. Especially the data transmission with
KVM-over-IP is protected by secure encryption to prevent unwanted
access from the outside.
How we protect your KVM installation
against attacks:
- VPN tunnel with AES
128-bit encryption
- Control port for the
exchange of non-static security keys
- Communication port for
the transmission of keyboard and mouse data
- Forward/backward
security for the generation of new security keys
- Trusted Computing
Platform to protect access and configuration data
- Video stream with
AES-128 encryption
- Automatic logout from
the operating system to protect the system against unauthorized access
- UID locking to prevent
the integration of unwanted end devices
- G&D KVM end devices
do not store any information and therefore prevent the readout of login
data from a device that has been physically removed
More information about secure KVM-over-IP is available here.
If you are still unsure whether your KVM system is as
secure as you need it to be, feel free to contact us and we will
discuss all of your questions.
The team of
G&D
| 
Security vulnerability Apache Log4j uncritical for KVM solutions from …
