Nexor
Company type | Private |
---|---|
Industry | Computer security |
Founded | 1989 U.K. | (as X-Tel Services Limited)
Founder | Hugh Smith, Graeme Lunt, Julian Onions |
Headquarters | Nottingham, England |
Key people | Stephen Kingan (CEO) |
Products | Nexor Sentinel, Nexor Guardian, Nexor Merlin, Nexor Data Diode, Nexor Border Gateway, MMHS |
Services | CyberShield Secure |
Owner | Stephen Kingan |
Website | www |
Nexor Limited is a privately held company based in Nottingham, providing product and services to safeguard government, defence and critical national infrastructure computer systems. It was originally known as X-Tel Services Limited.
History
Nexor Limited[1] was founded in 1989 as X-Tel Services Limited out of the University of Nottingham and UCL, following research into X.400 and X.500 systems for the ISODE project. In 1992 Stephen Kingan joined the business as CEO.[2] In 1993 X-Tel Services Limited was renamed Nexor Limited. In 1996 3i invested in the business to launch Nexor Inc. In 2004 Kingan and Nigel Fasey acquired the business. In 2008 Colin Robbins was appointed to the board as CTO. In 2012 Kingan acquired 100% ownership of Nexor. October 2013, the company moved headquarters from Nottingham Science Park to the NG2 Business Park.[3]
Nexor customers include NATO,[4][5] European Defence Agency,[6][7] UK MoD,[8][9] US DOD,[10] Canadian DND,[11] Foreign and Commonwealth Office[12] and Met Office.[13][14] Nexor designed and deployed the first public Internet search engine ALIWEB and the associated robots exclusion standard. Nexor is a contributor to the Internet Engineering Task Force, having worked on Internet RFCs 1086,[15] 1165,[16] 1488,[17] 1606[18] and 1778.[19] Nexor developed a Microsoft Exchange Client for Unix.[20] Nexor was the first organisation to be awarded the Intellect Best Practice Certificate.[21] Nexor has run regular demonstrations at the Coalition Warrior Interoperability Demonstration.[22][23] Nexor the first organisation to achieve TickItPlus[24] a quality-management certification program for software development. Nexor have strategic partnerships with Boldon James[25] and QinetiQ.[26] Nexor's Data Diode product is supplied via an OEM relationship with Fox-IT. Nexor is a supplier on the UK Government G-Cloud Cloudstore,[27] and an Official cyber security supplier to the UK Government.[28] Nexor won 2013 DSEi innovation challenge.[29]
Nexor is a contributor to Cyber Champions a community initiative to promote best practices in digital literacy and online safety awareness to schools, youth organisations and interest groups across the UK.[30] Nexor sponsor the Cyber Security Challenge designed to promote careers in cyber security.[31] Nexor was in the first batch of companies to achieve the UK’s Cyber Essential standard[32] and a contributor and industry launch partner to the PAS754 software development standard led by the Trustworthy Software Initiative. In 2015 Nexor launched a consulting arm - Qonex[33]
Products and services
Nexor is primarily focused on Secure Information Exchange for defence, governments and critical infrastructure.
Products and services include:
- Data Diodes to enforce one way data flows
- Data Guards and High Assurance Guards to authorise and filter email and data communications
- Cross Domain Solutions and Information Exchange Gateways to enable secure information exchange between secure networks
- CyberShield Secure to ensure secure development and deployment of Nexor's technology[34]
- Military Message Handling System
Assurance
Several Nexor products have been evaluated under the Common Criteria scheme to obtain independent verification of their claimed functionality, including:
- Nexor Sentinel, EAL4+ (Jan 2013)[35]
- Nexor Data Diode, EAL7+ (June 2010)[36]
- Nexor MMHS, EAL2 (March 2005)[37]
Collaborative research and development
Nexor has been a contributor on the following collaborative research and development projects:
Paradise
Paradise (1989-2002) (Piloting a Research Directory in an OSI Environment) was part of the ESPRIT COSINE[38] project to establish a pan-European computer-based network infrastructure that enabled research workers to communicate with each other using OSI. It was later prefixed NameFlow-Paradise.[39] Paradise implemented a distributed X.500 systems, across over 700 DSAs in over 30 countries. The project is documented in the NameFLOW archive[40] Quipu was the major X.500 implementation used in Paradise. Implementations also came from Inria[41] led by Christian Huitema and Siemens DirX,[42] originating from the Thorn[43] project, implementing the ECMA TR32[44] standard. David Goodman[45] was the project manager.
MAITS (Multilingual Application Interface for Telematic Services[46]) developed multilingual interfaces for X.400 and X.500 on top of Paradise.
Password
Password[47][48][49] (1993-1995) (Piloting a Secure Service Within OSI R&D) was a European Community-sponsored VALUE program,[50] comprising consortia from France (Inria), Germany (GMD Darmstadt) and the UK (UCL and Nexor), to establish a pilot security infrastructure for network applications for the European research community. The consortium developed secured applications based on X.509, including the OSISEC PKI. The primary application was PEM, a forerunner of S/MIME and SEEOTI. Goodman of UCL was the project manager, and Joerg Reichelt[51] was the Nexor lead engineer.
Eurocoop and Eurocode
Eurocoop (1991-1992)[52] (Esprit III Project 5303)[53] and the follow on project Eurocode (1992-1995)[54] (Esprit III Project 6155)[53] aimed to develop powerful and effective systems for supporting distributed collaborative work. Partners included Aarhus University, GMD Darmstadt, Rank Xerox and ICL. The approach adopted was to integrate components from a number of existing systems and to develop new collaborative tools based on the study of a large-scale technical application that encompasses many collaboration problems. Single components tools were developed that can be integrated with existing tools and that are able to interoperate with each other. ICW[55] was a closely related DTI funded project. Pippa Hennessy[56] was the Nexor project manager.
Regis and Renaissance
Regis[57][58] (1995–1998) was a collaborative project with Diamond Cable Communications and University of Sheffield to investigate problems inherent in providing regional business communities with low-cost, high-speed access to local information services. Robbins was the Nexor project manager.
The EU ACTS Project Renaissance[57][59][60] (1995–97) was led by Fretwell Downing to develop a virtual vocational training environment, with the University of Sheffield, Diamond Cable Communications and Yorkshire Cable and delivered to the UK National Centre for Popular Music. Harold Combs[61] was the Nexor project manager.
iGRC
The iGRC[62] project (2010-2012), was a collaborative project with HP, Assuria, Infogov, Cranfield University, Loughborough University and Birkbeck, University of London to automate threat level and control status changes for real-time management of the complexity, risk and resilience of secure information infrastructure.
CloudFilter
CloudFilter[63][64] (2012- ) is an EPSRC collaborative project with Imperial College to explore novel methods for exercising control over sensitive data propagation across multiple cloud providers.
Cross Domain Tactical Service Bus
A project led by 2iC to deliver a proof-of-concept demonstration for a Cross Domain Tactical Service Bus.,[65] winning the DSEI Innovation Award 2013.[66]
KTP
Project with De Montfort University to research, develop and implement the use of hardware, as a robust alternative to software in high assurance network security devices.[67]
CSIIS
The Defence Science and Technology Laboratory (Dstl) on behalf of the UK Ministry of Defence established a programme to realise the potential benefits from novel technology to front line forces. A consortium, led by QinetiQ (called Sirius, comprising over 40 organisations) provides the experience and research capability for CSIIS.[68] In September 2014, Nexor won the best research poster at the Annual Symposium of the UK Information Assurance Advisory Council (IAAC) based on CSIIS work.[69]
Personnel and alumni
Many Nexor employees (current and former) have made notable contributions to the Internet or business community, including:
- Andrew Kays (2008–present) – Managing Director. Expert in Secure Software Development, one of the first people in the UK to gain the (ISC)² Certified Secure Software Lifecycle Professional (CSSLP) qualification.
- Stephen Kingan (1992–present) – Chairman and CEO. Kingan was also a non-executive director of Investors in People (2005-2011)[70] and is a founding member of the Security and Resilience Industry Council (RISC).[71]
- Martijn Koster (1992–1995) – Creator of ALIWEB, the first Internet search engine.[72]
- Dr Graeme Lunt (1990–2004) — Co-founder of Nexor and creator of the first UNIX X.400 User Agent for Microsoft Exchange.[73]
- Mark Harman (2012–present) – Non-executive Director
- Julian Onions (1990–2013) – Co-founder of Nexor and messaging expert behind PP, author of RFCs 1086,[18] 1165[18] and 1606.[18] Onions is also studying "Galaxy Simulation"[74] at the University of Nottingham.
- Colin Robbins (1990–present) – Technical Director and co-author of LDAP.[75]
- Dr Hugh Smith (1990–2000) – Co-founder of Nexor, while a Reader in Computer Science at the University of Nottingham.[76] Smith is now owner of EIBS,[77] an evolution of the Regis project.
- Tony Roadknight (1990–present) – First employee of Nexor, currently Lead Technologist.
References
- ^ "Companies House".
- ^ "Stephen Kingan". LinkedIn.
- ^ "Nexor moves to NG2". Nottingham Post.
- ^ "Nato Contract". Press Dispensary. Retrieved 22 December 2012.
- ^ "ANWI Contract". NATO. Archived from the original on 23 August 2013.
{{cite web}}
:|archive-date=
/|archive-url=
timestamp mismatch; 22 August 2013 suggested (help) - ^ "EDA".
- ^ "EDA". Retrieved 22 December 2014.
- ^ "UK MoD".
- ^ "Uk MoD Accreditation".
- ^ "US DoD".
- ^ "Canadian Department of National Defense". PR newswire. Retrieved 22 December 2012.
- ^ "FCO". Fox.
- ^ "Met Office (Slide 5)".
- ^ "Met Office".
- ^ "RFC 1086".
- ^ "RFC 1165".
- ^ "RFC 1488".
- ^ a b c d "RFC 1606".
- ^ "RFC 1778".
- ^ "Microsoft". Federal Computer Weekly. Retrieved 22 December 2012.
- ^ "BPC Case Study". Intellect UK. Retrieved 22 December 2012.
- ^ "CWID".
- ^ "CWID 07".
- ^ "TickItPlus Certification". TickitPlus. Retrieved 22 December 2012.
- ^ "Nexor / Boldon James Press Release" (PDF). Boldon James. Retrieved 22 December 2012.
- ^ "Nexor / QinetiQ Press Release". QinetiQ. Retrieved 22 December 2012.
- ^ "G-Cloud".
- ^ "Official Supplier to HMG". UK Government.
- ^ "DSEi innovation award". Retrieved 21 September 2013.
- ^ "Cyber Champions".
- ^ "Cyber Security Challenge".
- ^ "Cyber Essentials". Computer World.
- ^ "Qonex Launch". Nexor. Retrieved 17 April 2015..
- ^ "CyberShield Secure". Retrieved 28 December 2012.
- ^ "Nexor Sentinel 3E CC Certification" (PDF). TÜV Rheinland Nederland B.V.
- ^ "Data Diode CC Certification (Figure 3, Page 7)" (PDF). TNO.
- ^ "Nexor MMHS CC EAL2 Certification" (PDF). NIAP.
- ^ "COSINE". Cordis. Retrieved 24 December 2012.
- ^ "NameFLOW Paradise". Retrieved 24 December 2012.
- ^ "NameFLOW Document Library". DANTE.
- ^ "Strangers in Paradise" (PDF). Dante. Retrieved 31 December 2012.
- ^ "DirX". ATOS. Retrieved 24 December 2012.
- ^ "Thorn Project".
- ^ "OSI Directory Access Service and Protocol (December 1985)" (PDF). ECMA. Retrieved 24 December 2012.
- ^ Goodman, David. "LinkedIn Profile". LinkedIn. Retrieved 24 December 2012.
- ^ "MAITS". Archived from the original on June 26, 1997.
{{cite web}}
: Unknown parameter|deadurl=
ignored (|url-status=
suggested) (help) - ^ "Password Annual Report". Retrieved 24 December 2012.
- ^ Kirstein, Peter; Peter Williams (November 1992). "Piloting authentication and security services within OSI applications for RTD information (PASSWORD)". Computer Networks and ISDN Systems. 25 (4–5): 483–490. doi:10.1016/0169-7552(92)90044-Q. Retrieved 28 December 2012.
- ^ "Password Project".
- ^ "EC Value Programme".
- ^ Reichelt, Joerg. "LinkedIn Profile". LinkedIn.
- ^ "EUROCOOP - IT Support for Distributed Cooperative Work". CORDIS. Retrieved 24 December 2012.
- ^ a b "ESPRIT Projects" (PDF).
- ^ "ESPRIT Project 6155 – EuroCODE" (PDF).
- ^ "ICW". Archived from the original on February 8, 1997.
{{cite web}}
: Unknown parameter|deadurl=
ignored (|url-status=
suggested) (help) - ^ Hennessy, Pippa. "LinkedIn Profile". LinkedIn.
- ^ a b "Telemetics for Learning" (PDF).
- ^ "Regis Project". Wayback Machine. Archived from the original on January 28, 1999.
{{cite web}}
: Unknown parameter|deadurl=
ignored (|url-status=
suggested) (help) - ^ "Renaissance". Wayback Machine. Archived from the original on April 27, 1999. Retrieved 27 December 2012.
{{cite web}}
: Unknown parameter|deadurl=
ignored (|url-status=
suggested) (help) - ^ "Renaissance Web Site". Wayback Machine. Archived from the original on July 12, 1997. Retrieved 24 December 2012.
{{cite web}}
: Unknown parameter|deadurl=
ignored (|url-status=
suggested) (help) - ^ Combs, Harold. "LinkedIn Profile". LinkedIn.
- ^ "iGRC Consortium". Archived from the original on 15 October 2013. Retrieved 24 December 2012.
{{cite web}}
: Unknown parameter|deadurl=
ignored (|url-status=
suggested) (help) - ^ "CloudFilter". EPSRC.
- ^ "CloudFilter". Imperial College.
- ^ "Tactical Service Bus" (PDF). Retrieved 21 September 2013.
- ^ "DSEi Innovation Award".
- ^ "KTP". Retrieved 21 September 2013.
- ^ "Sirius". Qinetiq.
- ^ "CSSIS" (PDF). IAAC.
- ^ "Investors in People". IIP.
- ^ "RISC Council". Intellect.
- ^ "Martijn Koster".
- ^ Lunt, Graeme. The XUA Visual Interface. Communications Research Group, Nottingham Univ. Retrieved 2 January 2013.
- ^ "Julian Onions". Google Scholar.
- ^ Howes, Tim. "LDAP History" (PDF). Open LDAP. Retrieved 3 January 2013.
- ^ "Hugh Smith, CRG". Retrieved 2 January 2013.
- ^ "EIBS".