Continent AP

The main articles are:

• Cryptography
• Firewall
• VPN and privacy (anonymity)
• Mobile Device Management (MDM) Mobile Device Management

2024: Obtaining a certificate of the FSB of Russia

Continent-AP for Linux from the "Security Code" received a certificate of compliance with the FSB of Russia on the requirements for CIPF. The developer announced this on January 29, 2024.

According to the certificate of conformity of the FSB of Russia No. SF/124-4734, Continent AP 4.1 for Linux now meets the requirements for CIPF, designed to protect information that does not contain information constituting a state secret, classes KS1 (version 4), KS2 (version 5), KS3 (version 6).

For the company, this is a big step towards supporting customers who have already switched or are considering switching to Linux. The sooner Russian developers can adapt their solutions to the Linux operating system, the faster the country will be able to strengthen digital sovereignty. We are glad that we became one of the first in this work, - commented the commercial director of Security Code, Fedor Dbar.

2023

"Continent 4" best-selling product of the year

Continent 4 - NGFW from the company "Security Code" - appeared in 2018 and is the result of work on the program "Continent 3." Continent 4 is a completely redesigned product with its own ContinentOS operating system, redesigned architecture (NGFW solution) and its own management system. For 2023, Continent 4 became the best-selling product for the year in the "Security Code." Read more here.

Compatibility of Continent AP version 4 with Rosa Cobalt Workstation version 7.9

The companies STC IT ROSA and "" within the Security Code framework of the technological partnership conducted testing their products for compatibility. The developers confirmed the correctness of the cryptographic information protection Continental AP tools version 4 with OS, ROSA Cobalt Workstation version 7.9 as well as trusted visualization and signature programs Jinn Client version 2 with operating systems ROSA Cobalt Workstation version 7.9, Server and. Rosa Barium

CIPF "Continent AP" is a client application designed for secure access to the corporate network from remote personal computers and smartphones of employees.

PAC "Jinn Client" is a tool for creating an electronic signature and trusted visualization of documents.

ROSA Cobalt is a universal operating system that is binary compatible with the RHEL 7 Linux distribution. It is suitable for companies planning to switch to the Russian OS from operating systems such as Red Hat Enterprise Linux and CentOS. Certified by FSTEC of Russia No. 4039 according to the 4th level of trust: "Protection profile of operating systems of type A of the fourth protection class (IT.OS.A4.PZ)."

The compatibility of OS Rosa Cobalt and CIPF Continent AP provides reliable and convenient access to data while maintaining their confidentiality and integrity.

ROSA Barium is a distribution kit in a line of operating systems based on the ROSA 2021.1 platform. This platform has already created a server and desktop OS ROSA Chrome for commercial use, ROSA Fresh for home and ROSA Mobile for mobile phones.

ROSA Barium is released as a distribution kit for self-installation on a flash drive, and as a solution in the form of a pre-installed distribution kit on a token.

Live distribution of ROSA Barium on a token is designed for secure remote access to the working environment. This is a complete and more convenient alternative to office laptops with the necessary set of programs and data protection tools. The solution can use electronic identifiers, providing companies with reliable and convenient access to data, while maintaining their privacy and integrity. The distribution kit can be easily downloaded to the user's PC or laptop from external media. The OS is installed on a secure USB device (token) for secure remote access and work in the usual working environment.

By ensuring the compatibility of their products, "Security Code" and STC IT ROSA improve the availability and ease of implementation of their solutions for various companies, allowing them to effectively combat cyber threats and protect data.

2021

Participation in the software and hardware vulnerability search program (bug bounty)

On June 3, 2021, Rostelecom announced the opening of a large-scale program on the basis of the National Cyber ​ ​ Police to find vulnerabilities in software and hardware (bug bounty). Its purpose is to verify and increase the level of security of solutions used in public sector organizations, major commercial companies and at critical information infrastructure facilities in Russia.

The first participant in the program was one of the key Russian manufacturers of cryptographic information protection tools - the Security Code company. The first study starts in June 2021. Its object will be the solution "Continent AP" of the company "Security Code" - a means of cryptographic information protection, which provides secure access to the corporate network from remote personal computers and smartphones of employees. Read more here.

TrueConf Server Compatibility

On March 30, 2021, TrueConf announced that, together with the Security Code company, it ensured the compatibility of POTrueConf Server with solutions for creating and protecting VPN networks according to GOST - UPKS Continent 3.9 and Continent-AP. Read more here.

2020

VPN client "Continent-AP 4" for the operating system "Alt Workstation 8 SP"

Users of the Russian Alt 8 SP operational system (developed by IVK) will be able to remotely connect to the digital resources of their organizations in a secure mode. This became known on October 2, 2020. This opportunity was provided by the Security Code company, having developed the Continent-AP 4 VPN client for the Alt Workstation 8 SP operating system. The user installs both software products on his home computer - and gets a workplace similar to an office one. He has at his disposal a set of application programs from the operating system distribution (Internet browser, e-mail client, editors of texts, tables, presentations, graphs, multimedia editors, etc.), as well as applications and data located in the organization's virtual private network. Data encryption during remote operation session is performed in accordance with GOST 28147-89. Data protection against distortion is carried out in accordance with GOST 28147-89.

The Alt 8 SP OS has already been certified by the FSTEC and the FSB, the certification process of the Continent-AP 4 VPN client will begin in the near future. The system will be sent for certification tests to the FSB of Russia and the FSTEC of Russia to confirm the compliance of "Continent-AP 4" for Linux with classes KS1/KS2/KS3, as well as the governing documents of the FSTEC of Russia on class 4 of security for type "A" firewalls and class 4 of the intrusion detection system. The Continent-AP 4 certification will allow it to be used to protect the digital infrastructure built on the basis of the Alt 8 SP OS at critical information infrastructure facilities, personal data information systems and state information systems.

In addition to remote access, Continent 4 provides centralized and scalable protection for the organization's network, segments of which can be built on Alt 8 SP OS. In particular - protecting the external perimeter of the network from malicious influence from public networks, dividing the network into segments with different levels of access, creating a fault-tolerant VPN network using GOST algorithms between geographically distributed networks, protecting GIS and ISDS, creating VPN GOST "over" the existing VPN network, etc.

The Continent-AP 4 VPN client is also compatible with a number of other Russian Linux kernel-based operating systems.

Compatible with Rutoken S (micro), Rutoken Lite micro, Rutoken EDS 2.0, Rutoken EDS 2.0 2100, Rutoken EDS 2.0 Flash, Rutoken EDS 2.0 3000 and Rutoken EDS 2.0 Smart Card

On March 23, 2020, the company Security Code"" announced that together with Aktiv"" tested for compatibility identifiers of electronic/and smart cards Rutoken cryptographic protective equipment "Continent-AP" 4.

During the tests, the correctness of the CIPF "Continent-AP" with USB tokens and Rutoken smart cards was confirmed:

• Rutoken S (micro);
• Rutoken Lite/Rutoken Lite micro;
• Rutoken EDS USB 2.0 ( , micro, type-C);
• Rutoken EDS 2.0 2100 (USB, micro, type-C);
• Rutoken EDS 2.0 Flash;
• Rutoken EDS 2.0 3000 (USB, micro, type-C);
• Rutoken EDS 2.0 Smart Card.

Based on the results of the work, a bilateral compatibility certificate was signed. The use of Continent-AP 4 in conjunction with Rutoken products significantly increases the level of security when authenticating users.

We are constantly working with Russian developers of information security tools, thereby ensuring the maximum convenience of joint operation of our security tools, Alexander Kolybelnikov, Security Code Product Manager, commented

{{quote 'author = Pavel Anfimov, Head of Product and Integration Department, Rutoken, Aktiv|Our technology partners pay due attention to the development of projects with the introduction of two-factor authentication. Rutoken becomes a single device that, on the one hand, provides secure access to various network and physical resources, and on the other, allows you to sign electronic documents and store critical information. }}

"Continent-AP" version 4

On January 24, 2020, the Security Code company announced the release of an updated version of the tool cryptographic protection information Continent-AP designed to provide secure access for users to corporate network resources from devices that are not part of its protected segments. The advantages of Continent-AP 4 were the implementation of a quick start, which simplifies the user's actions when starting work, as well as expanding the range of supported tokens.

According to the company, the main feature of the updated version of Continent-AP is the quick start function, which allows you to automatically establish a secure connection after importing the configuration file containing all Required remote access settings. The system automatically determines the distribution point of the revoked certificate list (CDP) and updates the revoked certificates (CRL), and then configures the system proxy and connects to the Access Server.

Continent-AP 4 has a modular structure - the implementation of cryptographic algorithms is placed in a separate third-party software module, which made it possible to ensure simultaneous operation of the Security Code CSP and CryptoPro CSP. In addition, the released version implements the registration of the CIPF workplace.

The list of tokens supported by Continent-AP was expanded with the following devices: JaCarta PKI, JaCarta PKI/GOST, JaCarta GOST.

In Continent-AP 4, the ability to collect diagnostic information has been improved. And the registration of events takes place with a full-fledged text description in the log applications OS Windows and log files. The changes also affected the user interface, which has been completely redesigned. Now the process of configuring Continent-AP has become simpler and more transparent, and the ability to customize the color scheme has been added.

The updated version simplifies the software installation procedure - it takes place with minimal user participation through one window. Moreover, the Continent-AP update from version 3.7 to version 4 occurs while maintaining the system settings. The updated version supports work with the Access Server of the "Continent" APCS versions 3.7 and 3.9, as well as with the UTM Access Server Continent 4.

2018: Red OS Compatibility

On October 8, 2018, Red Soft announced that in order to deepen the technological partnership, Red Soft and Security Code tested their products for compatibility. During the tests, the correctness of the work of CIPF Continent-AP (manufactured by the Security Code) on the Russian operational system RED OS (manufactured by RED SOFT) was confirmed. Read more here.

2015

Continent-AP VPN client for Android devices released

On July 7, 2015, Security Code announced the release of the Continent-AP VPN software client for Android devices. The VPN client helps to organize secure access of mobile users via the Internet (or other public access networks) to secure resources of the corporate network through a VPN tunnel, the data in which is encrypted in accordance with GOST 28147-89.

The VPN client on the Android device organizes:

• secure VPN connection and encrypted data exchange with the access server of the Continent ACS;

• Two-factor user authentication using X.509 digital public key certificates

• The ability to disable unsecured connections

• monitoring of "Continent-AP" software integrity;

• automatic registration of events related to "Continent-AP" operation on the device;

• Import/export a connection profile to/from another mobile device

• centralized management of access rights of mobile users to information resources of the enterprise (policies are determined by the administrator on the access server (SD) "Continent");

• support for various technologies for connecting to wireless networks (Wi-Fi, GPRS, 3G, LTE, etc.);

• storage of significant information on secure MicroSD cards of JaCarta (company "Aladdin R.D.").

A feature of the Continent-AP VPN client is the lack of restrictions on the use of software. Installation on a mobile device is carried out using standard Android tools and does not require superuser rights (root). Supported by Android version 4.0 and higher, compatibility with most models of tablets and phones running this OS.

"The software VPN client" Continent-AP "does not depend on the characteristics of the device itself and is as easy to use as possible. The client can be installed on any mobile device both centrally (by means of the corporate system) MDM and locally (by the user himself). - VPN the client is suitable for those customers who already have corporate mobile devices and want to use them in their automated systems, and those who plan to use users' personal mobile devices to connect to the network and secure remote access, successfully fitting into the concept, "- BYOD said, Alexander Nemoshkalov Deputy Technical Director for Network Security of the company". "Security Code

The software VPN client "Continent-AP" supports work with the "Continent" ACS version 3.7.

The Continent-AP product for Android is available for download on the developer's website.

FSB issued a new certificate of conformity "Continent-AP" version 3.6 (execution 8)

09.02.2015

On February 9, 2015, the company "Security Code" announced the certification of CIPF "Continent-AP" dated FSB Russia 20.01.2015 No. SF/124-2554, confirming the compliance of version 3.6 (version 8) based on a tablet computer "Continent of T-10" with the requirements for cryptographic tools (information protection CIPF) in class KS1.

The obtained certificate authorizes the operation of CIPF Continent-AP version 3.6 (version 8) on the Continent T-10 platform until January 20, 2018.

2012

"Continent AP" for Android

"Continent AP" for Android is a software VPN client, the installation of which on mobile devices running Android OS will allow implementing the following functions to protect information when operating mobile devices (tablets):

• strict, two-factor authentication of users by public key certificates;
• the ability to ban unprotected connections;
• support for various technologies for connecting to wireless networks: Wi-Fi, GPRS, 3G, LTE (Yota);
• centralized management of users' access rights to enterprise information resources;
• secure VPN connection to the Access Server of the "Continent" ACS, installed on the perimeter of the enterprise corporate network, to organize secure access of mobile users to the information resources of the corporate network;
• transparently encrypting user data stored on the device disk;
• Routing of all mobile user Internet traffic to the enterprise proxy server to align with enterprise security policies.

Continent AP for Android is part of the comprehensive Security Code development solution for protecting mobile platforms, presented by two products, namely the Continent T-10 secure tablet and the Continent AP software VPN client for Android OS. The solution from Security Code LLC will make it possible to use mobile devices in automated systems with connection to public networks (Internet) when processing confidential and personal data, while the procedure for bringing the NPP in line with the requirements of regulators (FSTEC, FSB of Russia) will be significantly simplified and it will be possible to certify them.

"When developing Continent AP for Android, we will try to ensure as wide compatibility as possible with various versions of Android OS and tablets from different manufacturers. This solution is intended primarily for those customers who have already purchased tablet devices and are faced with the need for their protection and legitimate use in automated systems, "said Alexander Nemoshkalov, Leading Product Development Manager, Security Code.

High VPN bandwidth and transparency for any application software using a variety of protocols for network interaction with enterprise information systems implemented in Continent AP will allow the use of mobile devices protected using this software client without additional technological restrictions.

The Security Code company plans to certify the Continent AP software client for Android OS for compliance with the requirements of the FSB of Russia and the FSTEC of Russia. Certification will make it possible to use mobile devices protected using Continent AP for Android OS in automated systems that require the use of certified solutions, as well as in the design or alignment of information systems for automated processing of personal data.

Information on the availability time for the purchase of Continent AP for Android OS will be provided by Security Code in March 2012.

"Continent AP" for Apple iOS

"Continent AP" for iOS is a software VPN client designed to run the OS. Apple iOS The Continent AP solution will provide users of Apple mobile devices iPad iPhone with the ability to remotely access corporate networks protected using VPN gateways of the Continent ACS. Reliable cryptographic protection of remote access and work with corporate information resources in Continent AP is carried out on the basis of the Russian cryptographic algorithm (GOST 28147-89) in accordance with the requirements of the law.

The "Continent AP" for iOS supports collaboration with VPN gateways of the "Continent" APCS (Access Server) versions 3.5 and 3.6. The technical release of Continent AP for iOS will take place on July 01, 2011, after which interested users will be able to receive a testing product.

Continent AP version 3.6

CIPF "Continent-AP" version 3.6 will go on sale no later than July 20, 2012. Software product CIPF "Continent-AP" version 3.6 RU.88338853.501430.002 received a certificate of conformity. FSTEC Russia

The received certificate (No. 2669) confirms compliance with the requirements of the guiding documents for the 3rd level of control for the absence of EID and the 3rd class of security for firewalls. This makes it possible to use CIPF "Continent-AP" version 3.6 to create automated systems up to and including 1V security class and when creating personal data information systems up to and including class 1. The certificate is valid until 05.07.2015.

Certificate of conformity of the FSB of Russia for CIPF "Continent-AP" version 3.6 (execution 3, execution 4)

The company "Security Code" reported in the summer of 2012 that the software product CIPF Continent AP version 3.6 RU.88338853.501430.002 30 (execution 3, execution 4) received certificates of conformity of the FSB of Russia. Certificates of SF/114-1882, SF/114-1883 confirm compliance with the requirements of the FSB of Russia to the means of cryptographic protection of information of class KS1 (execution 3), class KS2 (execution 4) and the possibility of using information that does not contain information constituting a state secret for cryptographic protection. Certificates are valid until 15.02.2015.

Certification

PME "Continent AP" was developed in accordance with the requirements of the FSTEC guidelines, has a certificate confirming compliance with the 3rd level of control for the absence of EID and the 4th class of security for firewalls. PSE "Continent AS" can be used as part of NPP up to and including 1G class, as well as for the protection of personal data processing information systems (ISDS).

On July 9, 2010, CIPF Continent AP (version 3.5 UVAL.00300-99) received a certificate of compliance with the FSB of Russia. The received certificate (SF/525-1463) confirms that the cryptographic information protection tool "Continent AP" version 3.5 meets the requirements of the FSB of Russia for devices such as firewalls according to the 4th security class.

According to this certificate, CIPF "Continent AP" can be used to protect information from unauthorized access in information and telecommunication systems of state authorities of the Russian Federation. The certificate is valid until 10.02.2013.

In April 2011, it was reported that the Continent-AP product passed version 3.6 of the inspection control and confirmed the previously issued certificate of the Federal Service for Technical and Export Control (FSTEC) of Russia (No. 1650) for compliance with the requirements for the 4th level of control of the absence of NDV and the 4th class of protection for firewalls.

Continent-AP version 3.6 supports modern multi-core processors and operating systems, including 64-bit versions. In particular, the following operating systems are supported: Windows XP Professional SP3 x86; Windows 2003 Server SP2 x86/x64; Windows 2003 Server R2 SP2 x64; Windows Vista SP2 x86/x64; Windows 2008 Server x86/x64; Windows 2008 Server R2 x64; Windows 7 x86/x64.

2010

Continent AP version 3.5

What's new in Continent AP version 3.5:

• A graphical interface for ITU management has been created;
• Added the ability to control local signaling about the LSD event. Messages are displayed on the monitor screen. The signaling is switched on and off in the ITU GUI;
• Added the ability to filter IP packets by regular expressions for application protocols (for ftp and http protocols);
• Log storage format changed. The log is written in readable form, in CSV format, can be imported for analysis;
• Date/time filtering mechanism implemented. It is possible to set the time intervals during which this or that rule will work;
• Registration of the facts of changing filtering rules has been added to the event log;
• Added registration of process startup facts in the event log;
• The ITU administrator can log in/out. Only the ITU administrator has the right to change settings and rules;
• Added traffic protection before user authorization. Filtering is based on a hard-coded list of rules that includes ARP, RARP, DHCP, NetBIOS and DNS protocols;
• Support for MS Windows 2000 Pro SP4, Windows XP Professional SP3, Windows Vista SP1 operating systems has been implemented.

You can purchase PME Continent AP through the official distributor of Security Code products, SafeLine or authorized partners.

"Continent AP" version 3

On March 29, 2010, the Security Code company introduced the Continent AP personal firewall (Continent AP information protection tool, version 3), designed to protect the computer from network threats, ensure secure connection of the AWS to public networks (including the Internet) and delimit access to AWS network resources.

PME "Continent AP" is focused on the organization of safe network interaction of automated workplaces as part of automated systems up to and including 1G class. The product allows you to filter incoming and outgoing IP packets according to the specified rules and schedules. It also records events related to network traffic filtering (event log and packet log).

CIPF Continent AP (Continent Subscriber Point) is part of the Continent ACS complex and is a software VPN client designed to organize remote employees' access to corporate information system resources through virtual private networks (VPN) based on global public networks using TCP/IP family protocols.