The UK Government's Code of Connection (CoCo) is a set of official IT Security "baseline" standards which must be met for Local Authorities to keep access to the Government Connect Secure Extranet (GCSx).
GCSx is a secure private Wide-Area Network (WAN) that enables communication between local authorities and Government departments such as Work and Pensions and Children Schools and Families.
Several of Softek's solutions assist LA's to achieve CoCo, PSN, GC Mail and GPMS compliance. Such solutions are also useful for Police Forces in the United Kingdom who are connected to the Police National Network (PNN).
Many of our other solutions also address PCI, Data Protection, GPMS and ISO27001 compliance.
From the Data Protection Act, Payment Card Industry, CoCo / GCSx and the UK Government Protective Marking System GPMS, failure to comply can be extremely damaging - and costly.
At the core of much of this regulation lies the need to properly identify, mark and protect sensitive data. When information is not classified or marked, users may not even be aware of what information CAN be officially shared and the organisation is left exposed.
CoCo v 4.1 introduced requirements for labelling e-mails with protective markings. Control 23.1 requires the mail client or user to add security labels to each email that carries a protective marking of PROTECT or higher.
CoCo compliance also requires you to enforce a policy whereby users are unable to forward, or systems are unable to AUTO-forward emails which may be classified or sensitive.
By enforcing the policy requirement to "Protective Mark" all emails AND documents using software such as JanuSEAL you are able to totally secure email communications using a gateway email filtering solution.
The Scottish government's (SWAN) WAN (scheduled for delivery in 2014) is designed and built so that it can support both PSN compliant services and non PSN compliant services. SWAN is PSN compliant, it therefore follows that the CoCo 4.1 requirements will be in force requiring that the UK governments GPMS(Government Protective Marking) scheme is applied.
janusSEAL for Outlook Safe Domain Extension
To assist with GCSX Code of Connection (CoCo) compliance, janusSEAL for Outlook Safe Domain extension warns and/or prohibits users from sending messages to domains where the delivery channel does not have a high enough security rating for the message.
- can warn them when sending sensitive messages to a large number of recipients
- can prevent them from sending sensitive messages to a large number of recipients
- can remove recipients from sensitive messages if there is no secure network to send it safely to them
- can correct (promote) email addresses when the sender accidently uses a recipient's public email address for a sensitive message when they should have used their private network address
- Read more.
Encryption laptops is a key requirement for any organisation.
Hundreds of organisations have lost data, and been placed in difficult situations because of failings in encrypting all computers.
Alertsec Xpress is a new full disk encryption service for Windows and Mac OSX laptops and computers, which provides full, seamless, total encryption of all hard disks.
Alertsec Xpress is based on Checkpoint Encryption software, which is FIPS 140-2, Common Criteria EAL4, and BITS Financial Service certifications.
It is available as a monthly subscription service, for which there is no large capital expenditure, nor ongoing committment, and provides the flexibility to upsize or downsize and reuse licences as needed, complete with 24x7x365 password reset and technical helpdes.k
Read more on our new Alertsec Full Disk Encryption service for Windows and Mac OSX
- Two Factor Authentication
A key element of CoCo is that users working remotely must use secure two-factor authentication instead of simple passwords.
Two-factor authentication requires a user to present two different factors (or proof) of identity – something you know and something you have. These factors are usually a secret PIN (something you know) and a tangible "token", which can be a key fob device, a USB device (such as SafeStick), or a mobile device such as a mobile phone, iPhone or BlackBerry (something you have).
Read more on Deepnet DUALShield Authentication solutions
- Removable Device Security
BlockMaster has a well-established, world wide and successful track record when providing fully encrypted, tamperproof and managable USB memory sticks to Government and other local authorities.
Since 2009 the UK NHS made SafeStick (now Datalocker) and SafeConsole their solution of choice when looking for removable media security.
Read more on SafeStick, DataLocker and SafeConsole USB Encryption and management solution
- Insider Threat Management / Data Leakage Prevention
CoSoSys Endpoint Protector provides total control over all removable device use, AND gives you total control over your environment - control who has access to what, when, how and for what purpose.
A complete Insider Threat Management and Data Leakage Prevention solution, policies can prevent dissemination of information via any exit point - email, webmail, IM, FTP, Skype, social networking sites, screen grabs etc. etc. Even printing of sensitive documents can be restricted on the fly.
- Email,, Web Filtering, Email Encryption, Email Archiving and Email Continuity
McAfee Security-as-a-Service protects from Email and Web threats, while providing encryption, archiving and seamless email continuity.
- Email Protection - block 99.7%+ spam, all malware, phishing, zero hour and targeted attacks.
- Web Protection filters all web traffic for threats - including mobile devices and remote workers.
- Automatic Email Continuity keep users productive during planned or unplanned email outages.
- Email Encryption. Simple, fast, no software to install for sender or recipient.