MDZ-Eshelon

The NPO Eshelon company developed means of the trusted boot "MDZ-Eshelon" in 2013. Within the first stage of works the module for ensuring compatibility with the UEFI interface (Unified Extensible Firmware Interface) is created.

"MDZ-Eshelon" represents an information security product which provides a trusted boot of the operating system (OS) by means of additional user authentication before loading of OS, control of devices from which OS and also control of integrity of the OS critical components is loaded. The distinctive feature "MDZ-Eshelon" is that the product is completely program development and uses the hardware which are already established in a system that allows to use a system for protection, for example, of notebooks and monoblocks. Quite often "MDZ-Eshelon" is a key information security product in thin clients. Also the product is compatible to modern environments of virtualization.

The current version of a product uses traditional (16-bit) services BIOS; the new version will use the UEFI interface which now actively forces out traditional BIOS.

In addition to support of UEFI in new MDZ-Eshelon version support of multifactor authentication, the protected magazine of registration of actions of users, the intuitive graphical interface of the administrator and many other things will be implemented.

Software "MDZ-Eshelon" certifies the Russian Defense Ministry and FSTEC of Russia. The product is used in the systems of personal data protection and also for protection of the data which are the state secret to a signature stamp "top secret" inclusive.

2016: Inspection control in the system of certification of the Russian Defense Ministry

The software "MDZ-Eshelon" underwent inspection control in the system of certification of the Russian Defense Ministry. The certificate of the Russian Defense Ministry No. 815 is prolonged for a software module of the trusted boot "MDZ-Eshelon" till September 29, 2021.

Within the inspection control "MDZ-Eshelon" the list of supported platforms was updated: architecture Elbrus and SPARC are added. The updated module of a trusted boot distinguishes the improved interface.

The software "MDZ-Eshelon" is intended for providing a trusted boot of the computer, control of integrity, identification and user authentication before transfer of management to the operating system. The solution is exclusively software module of a trusted boot (it is integrated with UEFI) and does not use any external hardware devices, is effectively used for protection of virtual environments.

"MDZ-Eshelon" it is included in the unified register of the Russian programs for electronic computers and databases (the register of the Russian software). Order of the Ministry of Telecom and Mass Communications of the Russian Federation of 3/18/2016.

2015: The FSTEC certificate of Russia is prolonged

On December 1, 2015 announced NPO Eshelon prolongation of validity period of the FSTEC certificate of Russia on the software "MDZ-Eshelon" till July 10, 2018.

The FSTEC certificate of Russia confirms: the software "MDZ-Eshelon" - means of identification and authentication of users and control of integrity of information arrays, conforms to requirements of the regulating document "Protection against unauthorized access to information. Part 1. Information security software. Classification by the level of absence control of not declared opportunities" (State Technical Commission of Russia, 1999) – on the 2nd level of control and specifications NTESh.11412-01 of the specification.