4XJS™

4Secure’s TrustedFilter™ XJS software is an XML schema and JSON inspection tool that runs natively on an Owl Cyber Defense OPDS appliance. This can be used to easily integrate a customer’s pre-existing use of XML inspection for data either entering or leaving the secure network. Or adopting the use of XML to provide a scanning capability between the cross-domain connection.

4XJS™
TF-4XJS-SC

4Secure’s TrustedFilter™ XJS software is an XML schema and JSON inspection tool designed to easily integrate with data diodes. When installed it maintains the clients’ use of XML schema and JSON inspection between the hardware-enforced one-way link.

XML is generally used to format data in a standardised and readable way. This means that XML can be used for conformity checking, in that if a particular piece of data conforms to the data owners’ expectations (their SCHEMA) it is allowed to perform certain functions.

Many users have already adopted XML to manage and monitor data and adopt its use to support their release authority and data loss prevention systems. Once the data conforms to the owners’ expectations, it can be used as intended. If it doesn’t conform, it can’t be used, but the risk will be highlighted and the data quarantined for further analysis.

The security of data diode unidirectional technology is routed in hardware (the best way) and therefore this one-way state cannot change. This security device provides protection and segregation between the two (or more) networks.

The security of networks against malformed communications at the media or host layers of the network stack is enforced with a data diode. Still, some organisations also need a way to control the data shared between them beyond unidirectional flow control:

4Secure’s TrustedFilter™ XJS software is 4Secure’s syntactic and semantic verification engine, enabling XML schema, JSON schema and complex compound schema verification of data at the network boundary.

Using TrustedFilter™ XJS software as an additional inspection capability, alongside the flow control and protocol break (provided by a data diode), enables an enhanced cross-domain solution. This solution can prevent data loss, provide release authority to data flows out of the secure network, or provide assurance and conformity checks to the data entering the protected network.

=

Syntactic and Semantic verification of data

=

XML, JSON and HTTP inspection filtering

=

Supports Data Loss Prevention

=

Provides Release Authority for data leaving a secured network

=

Provides conformity inspection before data enters a network

=

Works natively on Owl Cyber Defense data diodes

=

Provides additional assurance to accreditors and system owners

4XJS™ is an XML and JSON streaming utility that enables XML and JSON payloads to be seamlessly transferred as TCP streams and HTTP requests across Owl Cyber Defense Data Diodes, with full validation against a range of approved schema definition files. Only messages that match the predefined schema(s) are transmitted.

 

4XJS is simple to configure and maintain, providing full audit logging for security management. To further enhance the customer experience additional options include:

    • Query String Filtering. Using a custom schema allows scanners to check and filter HTTP POST data web-form fields, URL query string fields, HTTP header fields and user-defined restrictions on HTTP request methods.
    • Signature verification and removal of signed XML payloads. Prior to further schema validation, messages can have their signature validated and information removed, prior to cross-domain transfer.
    • Bi-directional request filtering. When used in conjunction with the 4Secure Bi-Directional Transfer (4BDT™) application, 4XJS™ can be used to enforce outbound request and inbound response messaging.
    • Multiple concurrent channels of 4XJS™ can be implemented to build a full-featured secure gateway appliance.

    All TrustedFilter™ purchases include 1 year’s software support; however, extended support plans are available.

    Request a Quote

    To find out more about our filters and how they can enhance your protection against cyber security threats, simply call us on 0800 043 0101 or provide a few details in the form and we’ll be in touch as soon as possible.

     

    FAQs & Resources

    Does 4XJS check files too?

    No 4XJS does not inspect files, only TCP streams and HTTP requests. 4Secure can provide a bespoke solution to perform XML and JSON schema checks on files if required.

    Does 4XJS support UDP?

    No 4XJS does not currently support UDP.

    Can I use 4XJS just as a HTTP proxy?

    Yes, the filtering components are not a requirement and the 4XJS HTTP proxy can be configured to ‘pass all’.

    Does 4XJS have a GUI?

    No, there is a single configuration file for the application.

    TrustedFilter™ Transport Layer Security (4TLS™) FAQs 4 August 2021
    TrustedFilter™ Transport Layer Security (4TLS™) FAQs
    TrustedFilter™ Bi-Directional Transfer (4BDT™) FAQs 4 August 2021
    TrustedFilter™ Bi-Directional Transfer (4BDT™) FAQs
    TrustedFilter™ Multi Channel Transfer (4MCT™) FAQs 4 August 2021
    TrustedFilter™ Multi Channel Transfer (4MCT™) FAQs
    TrustedFilter™ Message Queue Transport (4MQT™) FAQs 4 August 2021
    TrustedFilter™ Message Queue Transport (4MQT™) FAQs
    TrustedFilter™ XML JSON Scanner (4XJS™) FAQs 4 August 2021
    TrustedFilter™ XML JSON Scanner (4XJS™) FAQs
    TrustedFilter™ File Transfer (4SFT™) FAQs 6 May 2021
    TrustedFilter™ File Transfer (4SFT™) FAQs

    Use Cases

    Implementing a Secure File Transfer Service with 4SFT 31 May 2022
    Implementing a Secure File Transfer Service with 4SFT
    Multi Domains, Multiple Classifications into One Environment 6 May 2022
    Multi Domains, Multiple Classifications into One Environment
    Bi-directional Cross-Domain Enablement 27 April 2022
    Bi-directional Cross-Domain Enablement
    TrustedFilter™ Transport Layer Security (4TLS™) FAQs 4 August 2021
    TrustedFilter™ Transport Layer Security (4TLS™) FAQs
    TrustedFilter™ Bi-Directional Transfer (4BDT™) FAQs 4 August 2021
    TrustedFilter™ Bi-Directional Transfer (4BDT™) FAQs
    TrustedFilter™ Multi Channel Transfer (4MCT™) FAQs 4 August 2021
    TrustedFilter™ Multi Channel Transfer (4MCT™) FAQs
    TrustedFilter™ Message Queue Transport (4MQT™) FAQs 4 August 2021
    TrustedFilter™ Message Queue Transport (4MQT™) FAQs
    TrustedFilter™ XML JSON Scanner (4XJS™) FAQs 4 August 2021
    TrustedFilter™ XML JSON Scanner (4XJS™) FAQs
    TrustedFilter™ File Transfer (4SFT™) FAQs 6 May 2021
    TrustedFilter™ File Transfer (4SFT™) FAQs

    Case Studies

    Implementing a Secure File Transfer Service with 4SFT 31 May 2022
    Implementing a Secure File Transfer Service with 4SFT
    Multi Domains, Multiple Classifications into One Environment 6 May 2022
    Multi Domains, Multiple Classifications into One Environment
    Bi-directional Cross-Domain Enablement 27 April 2022
    Bi-directional Cross-Domain Enablement
    TrustedFilter™ Transport Layer Security (4TLS™) FAQs 4 August 2021
    TrustedFilter™ Transport Layer Security (4TLS™) FAQs
    TrustedFilter™ Bi-Directional Transfer (4BDT™) FAQs 4 August 2021
    TrustedFilter™ Bi-Directional Transfer (4BDT™) FAQs
    TrustedFilter™ Multi Channel Transfer (4MCT™) FAQs 4 August 2021
    TrustedFilter™ Multi Channel Transfer (4MCT™) FAQs
    TrustedFilter™ Message Queue Transport (4MQT™) FAQs 4 August 2021
    TrustedFilter™ Message Queue Transport (4MQT™) FAQs
    TrustedFilter™ XML JSON Scanner (4XJS™) FAQs 4 August 2021
    TrustedFilter™ XML JSON Scanner (4XJS™) FAQs
    TrustedFilter™ File Transfer (4SFT™) FAQs 6 May 2021
    TrustedFilter™ File Transfer (4SFT™) FAQs

    Testimonials

    Discover what customers say about our filter applications, products, and services.

    {

    4Secure support Panoptech in the delivery of Secure Transmission Networks into Law Enforcement. With Panoptech owning and managing the largest secure network infrastructure in the UK, it was great to work with 4Secure to provide data diode connectivity to our customers. Over the coming years, we look to roll out more of this type of network to our existing and new clients using 4secure as a trusted partner. The team at 4Secure are a key part of our supply chain and work very closely with us delivering a capability that we can all be proud of and know that we are able to work together to deliver what the customer needs.

    Kevin McDonald
    Managing Director & Chairman
    Panoptech
    {

    I worked with the team at 4secure on a cross-domain security project, helpful, knowledgeable and efficient. Definitely added value and reduced the risk on the project.

    Project Manager
    MOD SPEC CAP

    Related Products

    Here’s a selection of related products, services and solutions that work together to provide cross-domain protection for your network.

    4TLS™ 4BDT™ 4XJS™ 4MQT™ 4SFT™

    Contact Us

    Want to know more about our products, services and cross-domain solutions? Discuss your needs with one of our specialists and we’ll find a custom solution for your business.