Invisibility of protected nodes
When deployed, the BlastShield network is invisible to external unauthorized systems and cannot be detected or connected to. Access control and visibility across the entire BlastShield™ network is programmable and controlled by policy. Access between any two or multiple devices (or systems) within the mesh can be granted or revoked instantaneously.
The BlastShield Gateway, Agent and Orchestrator do not offer any publicly available IP address. IP scanning of a BlastShield network by an unauthorized user shows no identification of any endpoint device, thereby rendering the attacker at a loss as to; what the devices are, if they are functioning, what platforms they are operating on, or, indeed, any description of the hardware or mac address of the systems. IP scanning by a user authorized on the network would only offer visibility of the “protected” IP address of the users and assets that he/she/it is authorized to see by the policy.
Unauthorized users will be unable to cryptographically authenticate the end-to-end encryption used between nodes of the BlastShield™ network and hence the devices secured in the network will remain un-addressable.
