In today’s context, where the protection of sensitive data is a key issue in a new decade marked by digital transformation, we are proud to announce that our PARSEC solution has been awarded CSPN certification by the ANSSI. The guarantee of using an approved solution for sharing and storing files in the cloud is a pledge of assurance and confidence for businesses.
After the ANSSI evaluation audit, which began on April 16, 2020, the PARSEC security target was validated on April 16, 2021.
See the official ANSSI publication
Certification scope
SCILLE has developed, in collaboration with the DGA (French Ministry of Defence) and the Laboratoire Bordelais de Recherche en Informatique (LaBRI), the highly secure PARSEC solution, which guarantees the confidentiality, authenticity and integrity of sensitive data shared and stored anywhere in the world, regardless of the storage cloud.
PARSEC is an open source cryptographic concept for decentralized trust distribution:
– 1) Zero Trust,
– 2) Zero Knowledge,
– 3) and User-centered Security Model.
– 4) allowing “micro-segmentation” of sensitive data
– 5) operating in “WORM (Write Once, Read Many)” mode.
PARSEC’s sensitive data browser acts as an application store, the first component of which, currently marketed in SaaS and on-premise modes, is a Dropbox-style distributed storage system for sensitive documents, with the ergonomics of a virtual USB key synchronized between trusted users.
PARSEC guarantees the traceability, confidentiality, integrity and availability of information to its users.
Safety target
The PARSEC research project was prompted by a strategic vision of the evolution of the cloud and the Internet. Controlling network traffic no longer guarantees data confidentiality, let alone integrity and authenticity. Security strategy must become “Zero-Trust”. This implies that :
- Any network is considered hostile by default;
- Internal and external threats are always present on the network;
- Being part of an internal network is never a guarantee of absolute confidence;
- Every terminal, every user and every network flow must be authenticated and authorized;
- Security policies must be dynamic, and defined from as many data sources as possible.
PARSEC is designed for organizations wishing to build trusted enclaves in the cloud, based on low-cost, low-security cloud infrastructures. It provides an additional layer of security for a trusted group that already complies with current regulations, particularly those relating to user workstations.
