CRU Data Security Group
CRU Data Security Group
Secure Data Storage Solutions in a Zero-Trust World
Cyber-attacks and threats to data are never-ending. Data is at the center of every organization’s operation. Cyber security begins with data, and Data at Rest security begins by locking down devices at the hardware level. Relying solely on software security has limitations, including power degradation and vulnerability. Hardware security has by its very nature superior performance and reliability, which is most important on the tactical edge.
A requirement of a zero-trust network puts enormous pressure on cybersecurity professionals to secure Data at Rest and to achieve the complexities of security monitoring and government compliances.
CRU Data Security Group
The CRU Data Security Group (CDSG) mission is to help our customers safeguard and protect data with DIGISTOR encrypted data storage and CRU removable drives. Our products are found in secure data at rest (DAR) solutions for the DoD, NATO allies, civilian agencies and ministries, and enterprises around the world. For over 30 years, our customers and partners have come to trust and depend on our products advanced security and performance to lock down laptops and removable storage devices.
We serve every branch of the US armed forces and US intelligence agencies and their corporate partners—including Dell, HP, and system integrators—to safeguard classified mission-critical data in a variety of applications. Additionally, our solutions are deployed by every US federal agency to secure and protect sensitive state or political data from exposure to foreign or domestic bad actors.
CRU Removables Physically Secure and Transport Data
The only removable drives factory-integrated by major computer manufacturers. Built for years of daily use, CRU removables make it easy to lock up data, swap scenarios, and move data across air gaps.
DIGISTOR SSDs Lock Down Access
Safeguard sensitive data from cyberattacks, and bad actors. DIGISTOR SSDs can secure information on PCs, laptops, servers, and other endpoint devices.
To achieve compliance mandates, DIGISTOR SSDs are the only commercial FIPS-validated SSDs, that are NIAP- and CSfC-listed and offer affordable security for DAR, up to top-secret classifications.
CSfC-listed Storage Component
The Commercial Solutions for Classified (CSfC) program was established to enable U.S. government agencies and their customers to take advantage of affordable and readily available commercial off-the-shelf (COTS) IT solutions that meet the highest security standards.
When a solution is "CSfC-listed," it means that the solution has been evaluated and approved by the NSA as meeting the security requirements for protecting classified information using commercial technologies.
CSfC empowers government agencies to use products from private companies that meet specific security standards set by the NSA. With CSfC-listed products, agencies no longer rely solely on expensive and customized government equipment. The CSfC program has become increasingly important as government agencies seek more cost-effective solutions while meeting the NSA’s stringent security guidelines for the transmission of classified data. For more information, see our CSfC blog.
Common Criteria-certified/NIAP-listed (CCEVS-VR-VID11297-2023)
Common Criteria (CC) is more formally known as the Common Criteria for Information Technology Security Evaluation, an international standard (ISO/IEC 15408) for computer and IT product security certification that was developed by the governments of Canada, France, Germany, the Netherlands, the UK, and the U.S.
When a product is "NIAP-listed," it means that the product has successfully undergone the Common Criteria evaluation process through the NIAP program. The product has been deemed to meet the security requirements outlined in the relevant protection profile, and it has received recognition from the NIAP as being suitable for use in national security systems.
Vendors can use the CC as the basis to implement and make claims about the security attributes of their products. Testing laboratories evaluated products to determine if they meet these claims. In other words, the Common Criteria assure you that the computer/IT security product will perform as specified—appropriately to handle sensitive data in a target environment. Learn more about the Common Criteria blog.
NIST FIPS – CMVP CERTIFIED (#4294, #3926)
The Cryptographic Module Validation Program (CMVP) is a program run by the National Institute of Standards and Technology (NIST) in the United States. It focuses on validating the security and cryptographic capabilities of cryptographic modules used for protecting sensitive information and communications.
The validation process involves thorough testing, documentation review, and assessment of a cryptographic module's security functions to ensure they meet the specified standards. If a module successfully passes the validation process, it receives a FIPS 140-2 certification, which assures users that the module has been independently evaluated and meets established security criteria. See more about FIPS blog.
Visit www.CDSG.com for more information.