GSE
SecuritySoftware

Activity Control

Trusted bootloader with full disk encryption and pre-boot authentication at the UEFI BIOS level

Algorithms
AES-256, Serpent, Twofish
Platforms
Windows, Linux
Firmware
UEFI 2.0+ / Legacy BIOS
Authentication
Password, key, token
Capabilities

Comprehensive Data Protection

Activity Control provides multi-layered protection against unauthorized access to data and systems

UEFI Integration

Installs directly into UEFI BIOS to provide protection at the lowest level before OS boot

  • Pre-boot authentication
  • MBR/GPT partition protection
  • Secure Boot compatible

Full Disk Encryption

Hardware-accelerated encryption of all storage devices using proven algorithms

  • AES-256-XTS, Serpent, Twofish
  • Cascade encryption
  • AES-NI hardware acceleration

Multi-Factor Authentication

Flexible authentication methods for different use cases and security levels

  • Password and PIN
  • Key files
  • Hardware tokens and smart cards

Boot Protection

Prevent unauthorized operating systems from booting and protect against bootloader tampering

  • Bootloader integrity control
  • OS whitelist
  • Bootkit protection

BIOS Lockdown

Protect BIOS/UEFI settings from unauthorized configuration changes

  • BIOS password protection
  • Boot order lockdown
  • Boot device control

Multi-Disk Support

Encrypt and manage multiple storage devices simultaneously with centralized control

  • HDD, SSD, NVMe, USB
  • Hardware RAID arrays
  • External drives
Cryptography

Robust Encryption

Activity Control uses proven cryptographic algorithms and data protection methods approved by international security standards.

AES-256
Military-grade encryption standard
Hardware Acceleration
AES-NI, AVX2, SHA Extensions
Key Types
Passwords, files, tokens, TPM
Hidden Volumes
Invisible encrypted partitions
Cascade Encryption
AES + Serpent + Twofish
Plausible Deniability
Cannot prove data existence
Specifications

Technical Specifications

Detailed technical specifications of Activity Control for evaluating compatibility with your infrastructure

Encryption

Encryption algorithmsAES-256-XTS, Serpent, Twofish, Camellia
Cascade algorithmsAES-Serpent, AES-Twofish-Serpent, Serpent-AES
Hash algorithmsSHA-512, SHA-256, Whirlpool, Streebog
Key derivationPBKDF2-HMAC, Argon2id
Key length256-bit, 512-bit (cascade)

Compatibility

Operating systemsWindows 10/11, Windows Server 2016+, Linux (kernel 4.x+)
FirmwareUEFI 2.0+, Legacy BIOS, Secure Boot compatible
File systemsNTFS, FAT32, exFAT, ext4, XFS, Btrfs
Disk typesHDD, SSD, NVMe, USB, Hardware RAID

Hardware Requirements

Hardware accelerationAES-NI, CLMUL, AVX2, SHA Extensions
TPM supportTPM 1.2 / 2.0 (optional)
RAM requirements512 MB (boot), 2 GB (recommended)
Bootloader size< 32 MB

Management

Central managementEnterprise management console
Key escrowSecure master key storage
Remote unlockNetwork pre-boot authentication
Audit logAll operations journaling
Deployment

Deployment Options

Choose the right Activity Control deployment option based on your organization's scale and requirements

Standalone Installation

Installation on individual devices for personal data protection

  • Simple serverless installation
  • Local key management
  • Ideal for small business
  • Minimal infrastructure requirements

Enterprise Solution

Centralized deployment and management for large organizations

  • Centralized management console
  • Group encryption policies
  • Active Directory integration
  • Centralized key escrow

Managed Service

Complete security management by GSE specialists

  • Turnkey installation and setup
  • 24/7 monitoring and support
  • Incident management
  • Regular security updates
Compatibility

GSE Hardware Compatibility

Laptops
Desktops
Servers
Storage

Pre-installed on GSE Devices

Activity Control is available as an option when ordering GSE equipment. Get a secure device out of the box with configured encryption.

L200 SeriesM200 SeriesS200 Series
Use Cases

Workloads We Support

Government Sector

Protection of official information and citizens' personal data

Enterprise

Protection of trade secrets and employee data

Financial Sector

Regulatory compliance and transaction protection

Healthcare

Protection of medical data and patient personal information

Government Certification

Trust Level 5

5
Trust Level
Highest security level

Activity Control is certified by the National Security Committee of the Republic of Kazakhstan at the highest, 5th trust level. This means compliance with the strictest security requirements for protecting state-critical information.

State Secrets

Authorized for protection of information constituting state secrets

Cryptographic Protection

Certified cryptographic information protection tools

Full Compliance

Meets all Kazakhstan information security legislation requirements

Certificate issued by

National Security Committee of the Republic of Kazakhstan

Additional Certifications

Activity Control also meets the requirements of international information security standards.

КНБ РК Level 5СТ РКISO 27001ГОСТ

Protect Your Data

Contact us for a consultation and demonstration of Activity Control capabilities

Contact UsAll Products