Secure Isolator: Video, Audio & USB

Home / Products / Secure Peripherals / Peripheral Protection Devices / Secure Isolator: Video, Audio & USB

Datasheet

Setup Guide

Order
Overview
Features
Specifications
Downloads
How to Order

System Diagram

Isolator models addressed in this page:

  • FI11D-M - Secure 1-Port DVI-I KVM Isolator
  • FI11H-M - Secure 1-Port HDMI KVM Isolator
  • FI11P-M - Secure 1-Port DisplayPort KVM Isolator

-------------------------------------------------------------------------------

The secure isolator prevents vulnerable peripherals from mediating between compromised and secure computers by ensuring that video, audio and USB data flows in a single direction.

By preventing host-to-peripheral direct access the secure isolator eliminates data leakage.

The secure isolator is designed to provide the highest possible computer & peripheral isolation as demanded by government agencies, military, financial institutions and similar security sensitive customers.

The isolator perfectly suites scenarios where vulnerable peripherals or computers may impose a security threat. For example, in a secure meeting room, when an unsupervised (non-secure) guest laptop has to be connected to a projector which is shared with a classified computer. By isolating the classified computer from the projector the secure isolator protects the classified computer from being infected by the guest computer compromising any projector’s vulnerability.

To prevent bi-directional communication via the EDID channel, numerous mechanisms were set forth to protect EDID transactions:

  • EDID is read from the display only once the user presses the EDID capture button. This is to prevent continuous EDID transformation between the display and the source.
  • EDID information is parsed to assure that only legitimate information is passed between the display and the source. The Isolator is used as a buffer to protect transferring malicious through the EDID channel.
  • EDID information is limited to the basic essentials. Instead of passing the full EDID and MCCS, HSL’s Isolators limit the EDID to the minimum required, in order to restrict the EDID data passed.

Additionally, by allowing sound to travel only in one direction from the PC to the speaker, the isolator protects against eavesdropping attempts hence prevent intruders from compromising a computer's security and re-tasking the audio line-in (headset/speaker) into a microphone line. The embedded digital audio via HDMI/DP is also protected due to unidirectional video transfer.

How does it work?

  • Connect the computer's keyboard, mouse, display and audio ports to the isolator.
  • Connect the isolator to the keyboard, mouse, display and audio peripherals.
  • Computer and peripherals are fully isolated from each other.
  • User can securely use the peripherals.

Running an EDID Capture

Before using the isolator, run a one-time EDID capture. This prevents the continuous transfer of potentially malicious data – from the display to the PC – that could infect the PC, cause data leakage, and so on.

Preparation:

  • Connect the PC and all peripherals to the unit, according to the diagram.
  • Make sure the PC, display, and unit are ON.

To run an EDID capture:

  1. Short-click the CAPTURE button – for less than one second.
    At first, the EDID LED flickers for a few seconds and then lights continuously. If the EDID LED is OFF, repeat the procedure.

    Warning: Long-clicking the CAPTURE buttonsends the unit into an undesired loop. If this happens, restart the unit and repeat the procedure.

  2. Restart the unit.

Note: The procedure needs to be performed for new installations and when changing a display.

  • Protect against leakage and malicious attacks through USB, keyboard, mouse, video and audio peripherals.
  • Prevent compromised peripherals from infecting computers: 
    Isolate computers in meeting/control rooms from vulnerable peripherals that are shared between multiple computers.

  • Avoid continuous transfer of potentially malicious EDID data from the display to the PC, using the one-time Capture button.
  • Help secure matrix environments: 
    Protect classified computers in matrix-environments from shared-peripheral-threats originating from guest laptops or internet-access computers that connect to the same matrix. Securely join a low-security source to a matrix by connecting it through an isolator which assures that the matrix security is not compromised.
  • Work freely without compromising security:
    Display and control classified and non-classified computers without compromising security.
  • Protect against unauthorized peripheral device threats:
    Threats imposed by peripheral devices that should not be connected to a specific peripheral port (e.g., a USB mass storage device mistakenly connected to the keyboard port).
  • Protect against authorized but untrusted peripheral device threats:
    Threats imposed by legitimate and authorized peripheral devices (such as a standard computer display) that may be vulnerable to malicious attacks and cause data leakage when shared between sources.

  • Small form factor: weighing as little as 0.6 lbs. and with a width of 5.8 Inches, it occupies minimum desktop space.

  • Low cost: attractively priced and yet not compromising product's high-quality and security.

Monitor / Display Threats Protection

 

 

Audio Threats Protection

 

 

Hardware & Firmware Tampering Protection

 

 

 USB Threats Protection

 

Secure Isolator: DVI-I/HDMI/Display Port Video, Audio & USB

Computer Interface Ports
  • DVI-I/HDMI/Display Port Female video input connector
  • USB Type-B jack for keyboard and mouse
  • Audio input 3.5 mm stereo jack

Console Ports
  • DVI-I/HDMI/Display Port Female video output connector
  • USB Type-A jack for keyboard
  • USB Type-A jack for mouse
  • Audio output 3.5 mm stereo jack

Video Standards Supported
  • DVI-I - 3840X2160 @ 30 Hz (via DVI to HDMI cable) DVI dual-link - 2560X1600 @ 60 Hz (via DVI cable)
  • HDMI 1.4 support all resolutions up to 3840 x 2160
  • Display Port 1.2 support all resolutions up to 3840 x 2160

Power
  • DC input 12V / 1.5A maximum
  • Wall-mounted power supply included
  • Power input 90-240V AC

Environmental

 
  • Temperature range: Operating - 0ºC to 40ºC (32ºF to 104ºF); Storage -20ºC to 60ºC (-4ºF to 140ºF)
  • Humidity: Operating - 20 to 80% non-condensing; Storage – 10 to 90% non-condensing
  • Altitude: 0 to 10,000 ft

Physical Characteristics
  • Dimensions: 145 (W) x 105 (D) x 28 (H) mm   / 5.8 (W) x 4.2 (D) x 1.1 (H) inch
  • Device weight: 0.3 Kg. (0.64 lbs.)
Model Description CPN
FI11D-M Secure 1-Port DVI-I KVM Isolator CPN14753
FI11H-M Secure 1-Port HDMI KVM Isolator CPN14755
FI11P-M Secure 1-Port DisplayPort KVM Isolator CPN14754
Related Products

 

 

 
Products
Secure KVM Switches
Secure KVM Combiners
Secure KVM Mini Matrix
Secure KM Switches
Secure Peripherals
Peripheral Protection Devices Authentication Devices
Office KVM Switches
Office KVM Combiners
Office KVM Mini Matrix
Office KM Switches
Connectivity Solutions
Accessories
Solutions
Secure Peripheral Sharing Switch Devices
VoIP Phones Protection
Secure Meeting Rooms
Financial & Trading Floors
Command & Control
Federal Desktop
Audio & Video Distribution
News / Events
Aug 22, 2019
High Sec Labs’ Audio Diode mitigates the risks of eavesdropping when using peripheral audio devices
More info »
Jul 8, 2018
High Sec labs Inc has joined the Defense Automotive Technology Consortium
More info »
May 4, 2017
High Sec Labs headquarters has moved to a new location
More info »
Products
Secure KVM Switches
Secure KVM Combiners
Secure KVM Mini Matrix
Secure KM Switches
Secure Peripherals
Office KVM Switches
Office KVM Combiners
Office KVM Mini Matrix
Office KM Switches
Connectivity Solutions
Accessories
Solutions
Secure Peripheral Sharing Switch Devices
VoIP Phones Protection
Secure Meeting Rooms
Financial & Trading Floors
Command & Control
Federal Desktop
Audio & Video Distribution
Support
Submit Support Case
Downloads
Warranty Programs
R&D Services
Company
About Us
Management
News & Events
Partners
Certification & Standards
Contact
Contact Us
Where to Buy
Jobs