Inside Secure VPN Client (previously QuickSec® VPN Client) provides Android devices with a highly secure IPsec connection. Developed and maintained by security experts, it is widely used by tier 1 customers to meet the demanding requirements of governments, enterprises and operators.
It is available as a pre-loaded version for OEMs enforcing top security all the way to the kernel, and as a downloadable version.
High grade security with a FIPS140-2 certified crypto and IPsec policy enforced in Kernel
Widely used for enterprise access, government security and Voice over WiFi
Tested and validated in Inside Secure own interoperability laboratory
Inside Secure VPN Client enables robust authentication, confidentiality and data integrity developed in compliance over 90+ standard specifications required to work with the various flavors of IPsec. It is delivered as source code, either as a pre-loaded version for OEMs enforcing top security all the way to the kernel, or as a downloadable version that can easily be installed over the air. Both versions have excellent interoperability and complete feature set inherited from GUARD IPsec Toolkit.
Customers regularly verify the interoperability of flagship devices at Inside Secure’s own interoperability laboratory.
The team has worked on IPsec technology for 20 years (previously under SafeNet and AuthenTec) and co-authored the latest IKEv2 specification (RFC 7296). GUARD VPN Client is embedded in well over 100 million smartphones and tablets.
Inside Secure VPN Client for Android supports the wide set of features required to be interoperable with all the major VPN gateways such as IKEv1, IKEv2, MOBIKE, IPv6, tunnel mode IPsec, L2TP, Xauth, EAP-based authentication, NSA Suite B cryptography, and split tunneling, concurrent VPNs, , GUARD VPN Client is robust enough for enterprise, government and military use.
Mobile Optimized with Proven Technology and Interoperability
Inside Secure IPsec technology is used commercially by leading VPN gateway vendors as well as by leading mobile vendors. The GUARD VPN Client for Android has been tested for interoperability with all the major VPN gateways. Mobile VPN Client for Android provides an intelligent architecture that enables minimum runtime memory allocation, which frees CPU and memory resources for other tasks and only starts on demand to avoid using RAM when it is not needed.
Inside Secure Mobile Client for Android uses the FIPS certified SafeZone crypto library, is NSA Suite B complaint and offers security in line with the Security Technical Implementation Guides (STIGs) authored by the U.S. Department of Defense’s Defense Information Systems Agency. Implementation of this technical guidance provides risk assurance to meet the standards prescribed under the National Institute of Standards and Technology’s (NIST) authority and to meet the requirements of the Federal Information Security Management Act (FISMA). Besides being utilized in the U.S. Government, the DISA STIG has been adopted for use in the corporate business sector. In addition, the VPN client includes support for accessing external security tokens such as U.S. government Common Access Cards.
Inside Secure VPN client is a Toolkit shipped in source code to allow full control of customization and integration (except the Java Management API that is in binary to maintain compatibility). It comes with enhanced troubleshooting tools for debug information and error cause reporting.
Major carriers are now delivering their services (e.g. VoLTE) through any available WiFi access. To provide their services in a secure way and to authenticate their users, an IPsec connection using IKEv2 and EAP-SIM or EAP-AKA is made from the mobile device to the carriers ePDG. To ensure seamless handover and IP address preservation, the IPsec stack needs to be deeply integrated with the mobile device. That mobile data off-load solution is referred in 3GPP 23.402 and 33.402 as network-based mobility (NBM) over untrusted access.
Inside Secure VPN Client delivers the advanced IPsec features required to off-load carriers’ services (e.g. VoLTE) to WiFi through an ePDG: multiple concurrent VPNs, EAP-AKA and EAP-SIM, seamless handover, IKEv2, dual IPv4/IPv6 addressing. It has been successfully tested with major carriers and OEM vendors.
FREE Webinar: Understanding Fault Injection Attacks and Their Mitigation