User guide

ManualsBrandsRaritan ManualsComputer equipmentDominion KX II

341

342

343

344

345

346

347

348

349

350

Appendix D: FAQs

336

Security

Is the Dominion KX II FIPS 140-2 Certified?

The Dominion KX II, as of Release 2.2.0, provides users with the option

to use an embedded FIPS 140-2-validated cryptographic module running

on a Linux platform per FIPS 140-2 implementation guidelines. This

cryptographic module is used for encryption of KVM session traffic

consisting of video, keyboard, mouse, virtual media and smart card data.

What kind of encryption does the Dominion KX II use?

The Dominion KX II uses industry-standard (and extremely secure) RC4

or AES encryption, both in its SSL communications as well as its own

data stream. Literally no data is transmitted between remote clients and

the Dominion KX II that is not completely secured by encryption.

Does the Dominion KX II support AES encryption as recommended

by the US Government's NIST and FIPS 140-2 standards?

The Dominion KX II utilizes the Advanced Encryption Standard (AES)

encryption for added security.

AES is a US government approved cryptographic algorithm that is

recommended by the National Institute of Standards and Technology

(NIST) in the FIPS Standard 197.

Does the Dominion KX II allow encryption of video data? Or does it

only encrypt keyboard and mouse data?

Unlike competing solutions, which only encrypt keyboard and mouse

data, the Dominion KX II does not compromise security; it allows

encryption of keyboard, mouse and video data.

How does the Dominion KX II integrate with external authentication

servers such as Active Directory

, RADIUS, or LDAP?

Through a very simple configuration, the Dominion KX II can be set to

forward all authentication requests to an external server such as LDAP,

Active Directory, or RADIUS. For each authenticated user, the Dominion

KX II receives the user group to which that user belongs from the

authentication server. The Dominion KX II then determines the user's

access permissions depending on the user group to which he or she

belongs.

How are usernames and passwords stored?

Should the Dominion KX II's internal authentication capabilities be used,

all sensitive information such as usernames and passwords are stored in

an encrypted format. Literally no one, including Raritan Technical

Support or Product Engineering departments, can retrieve those

usernames and passwords.

Does the Dominion KX II support strong password?