SECURE REMOTE ACCESS |
|
Ensuring secure remote access to enterprise information is essential as companies continue
to move their business processes online and extend the enterprise boundary beyond the
corporate firewalls.
provides everything you need to identify users
with certainty and confirm network privileges, enabling you to:
- Increase productivity by allowing your remote employees to access information from anywhere
- Save time and money by securely moving business processes to the web, eliminating time-consuming
and costly manual intervention
- Improve efficiency by allowing partners, customers, and suppliers to securely access the critical information
- Increase security by requiring two-factor authentication for remote access to critical corporate resources they need to do business
|
When implementing remote access there are a number of security issues which must be addressed.
For example:
- VPN access should be implemented;
- Desktop Intrusion Detection and personal Firewalls should be used;
- Areas of strong authentication need to be addressed, as passwords are always the weakest link.
|
| Provision Network & Security Division can provide your organization with a complete secure remote access solution using our
consultancy team and security product range. |
|
| Two popular technologies for providing remote access include and . |
|
|
|
| IPSec is used in the main when users need unrestricted access to their corporate network, and the corporation directly
manages the end-user devices. The IPSec VPN client is installed on the devices, and security rules are managed centrally
by Provision. To prevent attacks on the client and thereby the company network, Provision combines
the VPN client with a personal firewall. |
|
|
|
|
|
|
SSL VPNs are appropriate in the following situations:
- For connecting with partners
- Where the customer has no possibility to distribute and manage
IPSec VPN client software centrally
- Where most applications are accessed via the web.
|
|
Because SSL VPN products do not need any client software (or the software can be
installed and updated on-the-fly) a good part of the software administration burden
disappears. This can lead to massive savings in medium and large-sized installations.
In many cases VPN access is required via devices that the firm does not manage. In the
cases where there is no possibility of installing client software (on a partner's PC or
in a home office for example) creating a VPN is often only viable using SSL.
SSL VPN products feature a portal page, which users connect to using a normal
browser, and where they can then access any authorized web applications. Access to
legacy client/server applications is achieved using Java or ActiveX components, which
are installed on-the-fly, and then used to build the SSL VPN tunnel. Where access at network
level is needed, SSL VPN products offer native client software. In practice the two techniques
will be used in combination. Access to web-based applications such as Outlook web access,
Notes, Intranet, Citrix or SAP are done without a client using SSL – for access to
client/server applications the native SSL VPN client will be used. |
|
|
|
|
