Protexx Case Studies

Protexx has demonstrated our viability by solving Identity Management and Information Protection security problems for our clients over the last four years. Below is a sampling of those success stories:

Protexx to protect Henderson County, NC. Courthouse and Emergency 911 Call Center from Unauthorized Access to Emergency Broadcast Network

Read our Press Release


Situation:  Eliminate unauthorized access to Henderson County, NC. Emergency Broadcast Network.

Challenge:  Henderson County, NC. recognized the importance of providing Emergency Mass Notification to alert the community in the case of an emergency especially in light of recent tragedies affecting our college campuses around the country. The challenge was that once Henderson County selected a Software as a Service (SAAS ) product it was vulnerable to user name and password access via the Internet creating the possibility of unauthorized access by an outside hacker or identity thief. 

What we can do:  Protexx partnered with Desktop Alert to provide Henderson County with our industry leading Out of Band Authentication (OBA) and Protexx Device Authentication (PDA) Solution providing Digital Certificates (PKI) allowing only pre authenticated devices and users authorization to access their network.  This combination of security levels made it virtually impossible to pentrate the system without the pre installed certificate on the pre authenticated device.

Impact:  By integrating Protexx OBA and Protexx Device Authentication into the Desktop Alert Emergency Alert Network eliminated the potential liability that could have been caused by hackers and identity thieves getting on the network to abuse your services.  All of this security was accomplished without software or the issuance of tokens.

Read our Case Study 


Protexx to provide Wireless and Network Security for Medical Records Office HIPAA compliance

Situation:   A Medical Imaging and Billing Firm with Mobile MRI units had to meet HIPAA requirements on the safe and secure storage and transfer of medical imaging and personal medical records. http://integradx.com/home.htm

Challenge:  Protexx was contacted to secure the transfer of all medical records within full HIPAA compliance between outside locations and multiple office locations in three states.

What we can do:  We can ensure secure data in motion transfer of records and images with Protexx remote VPN, Protexx Secure Tunnel Servers issuing two way authenticated RSA certificates. This is provided as an Hosted Service.

Impact By complying with HIPAA regulations Integra ensures it's customers security with the reduction or elimination of hacking and identity theft though use of HIPAA exceeding encryption solutions protecting of all data.

Protexx to perform Security Audit for Major Cruise Line

Situation A prominent Cruise Line needed to protect their customers and confidential internal data across their wireless networks aboard ship. http://www.rssc.com/

Challenge To provide secure data in motion solutions able to withstand weather conditions and traversing international waters.

What we can do We can ensure the secure delivery of data with a 2048 bit encrypted remote VPN in the US while dynamically reducing the encryption in international waters to 256 bit seamlessly. This is provided as an ASP model.

Impact Regent Seven Seas Cruise Lines understands that providing computer data security protection for their passengers and crew requires a trustworthy environment for conducting sensitive transactions through open networks. To that end Regent continues to use best practices to be on the cutting edge of client safety and satisfaction.

Read our Accomodation



Protexx to protect Health Club Franchises against Unauthorized Access

Situation:  A local health and fitness company contacted us because they had their web server hacked by a disgruntle employee. The rouge perpetrator was able to access the corporate web server by using the remote login of the Network Administrator. Once the hack was realized, the Administrator was forced to shut down the connections to all of their (95) franchising accessing the corporate webserver. Each of these franchises have approximately (5) workstations and about (2500) members per location that need to access the webserver to review their personal dietary- health information as well as share information with corporate in a secure manner.

Challenge:  Protexx was hired to provide a cost effective solution which would allow the Administrator to control access to resources by preventing unauthorized users from logging in to privileged areas. The Administrator must be able to audit and review user activity to prevent future “Inside Jobs” to protect the integrity of the corporate network. Each franchise must have a secure connection to the corporate web server and each member of the franchise must be authenticated before he/she can access their personal health information via their personal website.

What we can do:  We arrived at the client’s corporate office and proceeded to conduct a security audit of the corporate network. We identified several vulnerabilities within the network. One of these vulnerabilities was a wireless router that is used only when there are visitors that need Internet access. As a practice, the Administrator turns the router off when it is not in use. On the day were where there, we were able to sniff the wireless connection because it had not been turned off. We discovered it was not even encrypted with WEP or WAP. Another problem is there’s no way to prevent another rouge employee from using someone else’s stolen username and password to logon to the network.

Client network topology:  The client has a corporate office with Workstations (50),  Applications Servers (4),  Mail Server (1),  Web Server (1), and  Franchises (95) with Workstations (5) at each location. The Web and Email servers reside at a CO-LO  approximately 10 miles away from the corporate office. The Application Servers  (4) and Workstations (50) reside at the corporate office.  

Phase 1: Secure corporate workstations, application servers, mail servers, wireless router, and web server; preventing unauthorized access and providing an audit trail of each connection on the network.

Phase 2:  The customer will be conducting clinical trials with 20 participants. (10) Males and (10) Females. Each person will be given a number of dietary supplements to use over a period of time. Before the supplements are taken, each participant will have their DNA analyzed. Another DNA sample will be taken after the dietary supplements have been used up to discover any changes. DHF will design a custom website for each participant whereby they will be able to check their results during the clinical trial period. Eventually this project will be rolled out to all (95) franchises with each member (2000 per club), having their own custom medical website. The major issues are HIPAA regulations covering the transmission of medical information and limiting access to only authorized users.

Phase 3:  All (95) franchises will be providing medical information to its members, blood pressure, DNA results, and more via individual member web pages. The major issues are HIPAA regulations covering the transmission of medical information and limiting access to only authorized users.

Impact:  Phase 1: PROTEXX will implement a PKI security solution using ProtexxVPN, Protexx Tunnel Server, Protexx Office Server, and ProtexxOBA.
Protexx Secure Office Server will be placed on a separate partition from the tunnel server, but they will all reside on (1) machine supplied by the client a (DELL 1650). A tunnel server will be placed at the corporate office and at the CO-LO where the webserver resides. This allows for a secure 2048bit connection to be established between the corporate office and the webserver.
The ProtexxVPN product will be loaded on the client workstations to create a secure tunnel connection to network resources like application servers and email servers.

ProtexxOBA will be loaded on each workstation allowing for only authorized users to have access to corporate websites. It will also allow the network Administrator the ability to audit all connections made for network users. This product also eliminates the need for usernames and passwords because only a valid certificate holder can access the web portal. Each certificate is assigned to a member who will be accessing their health information online.

An administrative consul will be customized for each franchise. This will allow Certificate Administrator to revoke, renew, and reissue certificates. They will also be able to generate daily, monthly, and yearly login reports; all via a web portal.

Phase 2: ProtexxOBA will be used to provide authenticated web access by clinical trial members who will be accessing their information from home. Only members with a specific OBA CERT will be able to even access the site. If the subscriber does not have a valid cert they will be a “Page Not Found” when trying to retrieve the URL.

Phase 3: ProtexxOBA will be used to provide authenticated web access for each member of the franchise so that they can retrieve and review their personal health information online via a personal website provided by the franchise. The ProtexxOBA root certificate will be loaded in the web browser from the member’s personal computer. Thereby, assuring that only the authenticated user has access to the website.

Protexx Case Studies

Protexx has demonstrated our viability by solving Identity Management and Information Protection security problems for our clients over the last four years. Below is a sampling of those success stories:

Protexx to protect Henderson County, NC. Courthouse and Emergency 911 Call Center from Unauthorized Access to Emergency Broadcast Network

Read our Press Release


Situation:  Eliminate unauthorized access to Henderson County, NC. Emergency Broadcast Network.

Challenge:  Henderson County, NC. recognized the importance of providing Emergency Mass Notification to alert the community in the case of an emergency especially in light of recent tragedies affecting our college campuses around the country. The challenge was that once Henderson County selected a Software as a Service (SAAS ) product it was vulnerable to user name and password access via the Internet creating the possibility of unauthorized access by an outside hacker or identity thief. 

What we can do:  Protexx partnered with Desktop Alert to provide Henderson County with our industry leading Out of Band Authentication (OBA) and Protexx Device Authentication (PDA) Solution providing Digital Certificates (PKI) allowing only pre authenticated devices and users authorization to access their network.  This combination of security levels made it virtually impossible to pentrate the system without the pre installed certificate on the pre authenticated device.

Impact:  By integrating Protexx OBA and Protexx Device Authentication into the Desktop Alert Emergency Alert Network eliminated the potential liability that could have been caused by hackers and identity thieves getting on the network to abuse your services.  All of this security was accomplished without software or the issuance of tokens.

Read our Case Study 


Protexx to provide Wireless and Network Security for Medical Records Office HIPAA compliance

Situation:   A Medical Imaging and Billing Firm with Mobile MRI units had to meet HIPAA requirements on the safe and secure storage and transfer of medical imaging and personal medical records. http://integradx.com/home.htm

Challenge:  Protexx was contacted to secure the transfer of all medical records within full HIPAA compliance between outside locations and multiple office locations in three states.

What we can do:  We can ensure secure data in motion transfer of records and images with Protexx remote VPN, Protexx Secure Tunnel Servers issuing two way authenticated RSA certificates. This is provided as an Hosted Service.

Impact By complying with HIPAA regulations Integra ensures it's customers security with the reduction or elimination of hacking and identity theft though use of HIPAA exceeding encryption solutions protecting of all data.

Protexx to perform Security Audit for Major Cruise Line

Situation A prominent Cruise Line needed to protect their customers and confidential internal data across their wireless networks aboard ship. http://www.rssc.com/

Challenge To provide secure data in motion solutions able to withstand weather conditions and traversing international waters.

What we can do We can ensure the secure delivery of data with a 2048 bit encrypted remote VPN in the US while dynamically reducing the encryption in international waters to 256 bit seamlessly. This is provided as an ASP model.

Impact Regent Seven Seas Cruise Lines understands that providing computer data security protection for their passengers and crew requires a trustworthy environment for conducting sensitive transactions through open networks. To that end Regent continues to use best practices to be on the cutting edge of client safety and satisfaction.

Read our Accomodation



Protexx to protect Health Club Franchises against Unauthorized Access

Situation:  A local health and fitness company contacted us because they had their web server hacked by a disgruntle employee. The rouge perpetrator was able to access the corporate web server by using the remote login of the Network Administrator. Once the hack was realized, the Administrator was forced to shut down the connections to all of their (95) franchising accessing the corporate webserver. Each of these franchises have approximately (5) workstations and about (2500) members per location that need to access the webserver to review their personal dietary- health information as well as share information with corporate in a secure manner.

Challenge:  Protexx was hired to provide a cost effective solution which would allow the Administrator to control access to resources by preventing unauthorized users from logging in to privileged areas. The Administrator must be able to audit and review user activity to prevent future “Inside Jobs” to protect the integrity of the corporate network. Each franchise must have a secure connection to the corporate web server and each member of the franchise must be authenticated before he/she can access their personal health information via their personal website.

What we can do:  We arrived at the client’s corporate office and proceeded to conduct a security audit of the corporate network. We identified several vulnerabilities within the network. One of these vulnerabilities was a wireless router that is used only when there are visitors that need Internet access. As a practice, the Administrator turns the router off when it is not in use. On the day were where there, we were able to sniff the wireless connection because it had not been turned off. We discovered it was not even encrypted with WEP or WAP. Another problem is there’s no way to prevent another rouge employee from using someone else’s stolen username and password to logon to the network.

Client network topology:  The client has a corporate office with Workstations (50),  Applications Servers (4),  Mail Server (1),  Web Server (1), and  Franchises (95) with Workstations (5) at each location. The Web and Email servers reside at a CO-LO  approximately 10 miles away from the corporate office. The Application Servers  (4) and Workstations (50) reside at the corporate office.  

Phase 1: Secure corporate workstations, application servers, mail servers, wireless router, and web server; preventing unauthorized access and providing an audit trail of each connection on the network.

Phase 2:  The customer will be conducting clinical trials with 20 participants. (10) Males and (10) Females. Each person will be given a number of dietary supplements to use over a period of time. Before the supplements are taken, each participant will have their DNA analyzed. Another DNA sample will be taken after the dietary supplements have been used up to discover any changes. DHF will design a custom website for each participant whereby they will be able to check their results during the clinical trial period. Eventually this project will be rolled out to all (95) franchises with each member (2000 per club), having their own custom medical website. The major issues are HIPAA regulations covering the transmission of medical information and limiting access to only authorized users.

Phase 3:  All (95) franchises will be providing medical information to its members, blood pressure, DNA results, and more via individual member web pages. The major issues are HIPAA regulations covering the transmission of medical information and limiting access to only authorized users.

Impact:  Phase 1: PROTEXX will implement a PKI security solution using ProtexxVPN, Protexx Tunnel Server, Protexx Office Server, and ProtexxOBA.
Protexx Secure Office Server will be placed on a separate partition from the tunnel server, but they will all reside on (1) machine supplied by the client a (DELL 1650). A tunnel server will be placed at the corporate office and at the CO-LO where the webserver resides. This allows for a secure 2048bit connection to be established between the corporate office and the webserver.
The ProtexxVPN product will be loaded on the client workstations to create a secure tunnel connection to network resources like application servers and email servers.

ProtexxOBA will be loaded on each workstation allowing for only authorized users to have access to corporate websites. It will also allow the network Administrator the ability to audit all connections made for network users. This product also eliminates the need for usernames and passwords because only a valid certificate holder can access the web portal. Each certificate is assigned to a member who will be accessing their health information online.

An administrative consul will be customized for each franchise. This will allow Certificate Administrator to revoke, renew, and reissue certificates. They will also be able to generate daily, monthly, and yearly login reports; all via a web portal.

Phase 2: ProtexxOBA will be used to provide authenticated web access by clinical trial members who will be accessing their information from home. Only members with a specific OBA CERT will be able to even access the site. If the subscriber does not have a valid cert they will be a “Page Not Found” when trying to retrieve the URL.

Phase 3: ProtexxOBA will be used to provide authenticated web access for each member of the franchise so that they can retrieve and review their personal health information online via a personal website provided by the franchise. The ProtexxOBA root certificate will be loaded in the web browser from the member’s personal computer. Thereby, assuring that only the authenticated user has access to the website.