Internet Security Corporation
can provide secure remote access and
connectivity to all office resources by letting you virtually plug into your
office network from anywhere in the world.
@TheOffice requires no
hardware installation and allows any PC with Internet access to be used as if it is directly connected to your Office LAN!
@TheOffice
Benefits:
Setup
and Configuration
- Software-based solution significantly
reduces cost
- Prepare access for thousands of users in less than 15 minutes
- Remote users authenticate with Windows Domain credentials
- Users access the same resources available
to their network account
Security
- IPSec over TCP connection reduces
data transfer to TCP only
- TLS (SSL) secured user registration
- Digital certificates ensure secure authentication
- Two-Factor authentication through
certificates and strong passwords
- 3DES or AES encryption, selectable on
Gateway
Ease
of Use
- @TheOffice gives you access to all
network resources
- Use database and network
applications as though you're in the office
- Works with standard broadband, WI-FI,
dial-up, any internet connection
Subscription
pricing model
- Scale number of users up or down as business
needs change
Pricing
@TheOffice
subscription pricing allows for scaling user licenses up or down as needs
dictate.
How
it Works:
@TheOffice uses a set of industry-standard and secure technologies to establish connections from Client
PC's on the road to a Gateway PC on your office LAN. Upon connection, you are assigned a virtual IP address
on your office network. You are then 'plugged in' and can transparently access resources as if you were
at the office.
Gateway
The
Gateway manages access to the network. Installed on a standard
Windows 2000 or XP workstation or server, the Gateway consults
with the Windows domain controller. Any Windows domain user can
register for Secure Remote Access provided they belong to a group
of users authorized by the System Administrator.
Ease
of Management – Gateway
Dedicated
remote access function removes complications normally associated
with access gateways on the router or firewall. This significantly
reduces complexity and therefore support requirements.
Auto-install
and configuration removes the need for high level IT.
Using
internal domain rights to dictate remote access controls
eliminates dual sets of user access databases.
Toggling
users in and out of the “Active” list makes for simple and
efficient resource allocation.
Linking the issuing of Certificates to domain
user status offers transparent CA control
@TheOffice
Client
The
client runs on most Windows operating systems. Users can download the software or it can be installed from
CDROM. The user interface is
very easy to use.
Ease of Use – Remote Client
Dialogue
box connect function offers a single click connection to the
office
Auto
dialup option prior to @TheOffice connect
Once
connected, users have a familiar network interface for both remote
and office bound access
Transparent Certificate-based IPSec security
Enrol
A simple, three-step registration process gets the user going.
Users receive a welcome memo (gateway generated) with enrolment
information.
Connect
Connecting to the
office network is as simple as selecting the connection profile
and your personal pass-phrase.
Security
Benefits
Absolute security is a basic requirement to any Remote Access solution, not a feature. At the core of @TheOffice lies a selection of uncompromising security technologies such as Certificate-based Authentication, SSL and IPSec over TCP tunneling, 3DES/AES encryption, encrypted Private Key storage and automatic dynamic firewalling.
Although @TheOffice is extremely easy to use, the underlying technology created to achieve this transparency is extremely sophisticated.
High-level cryptographic mechanisms offer maximum protection of privacy and ensure network security.
3DES & AES encryption standards may be used interchangeably on a per gateway basis.
Users enrol for certificates over an encrypted TLS
(SSL) Session.
The user’s private key is stored on the gateway and on the user’s PC in encrypted form, protected by the user’s personal pass-phrase. The gateway never obtains any information to decode this private key.
Dynamic firewalling feature assures that the user cannot inadvertently become a “router” between the office network and the Internet by automatically restricting all other traffic from the Internet and outside of the local subnet.
The gateway has a built-in automated Certificate Authority (CA) and automatically issues all required user and gateway certificates.
Selectable Triple DES or AES encryption
User unique certificate authentication
Dynamic Firewalling when connected to the office
Secure backup of user profiles on the gateway, allows roaming access
Core Technology
“Virtual IP address” Allows remote users secure access to the company resources such as file servers, printers and database applications transparently, without requiring reconfiguration of these applications when roaming. Once a user is connected via @TheOffice the network treats the connection as part of the corporate LAN. All IP traffic is securely
tunneled between the Virtual IP address and the LAN.
IPSec over TCP tunneling. To solve the problem of firewall and NAT traversal,
@TheOffice uses a proprietary protocol that tunnels all IP traffic over IPSec and then over a single TCP/IP connection. This reduces the firewalling configuration to the absolute minimum. Instead of configuring four or five traffic types (as required by most VPN solutions) configuration is reduced to one traffic type.
Certificate based authentication. The Gateway issues a Digital Certificate to users during the enrolment process. To facilitate mobility, these certificates are stored securely both on the remote PC and the Gateway. This enables users, with the correct credentials, to connect from different PC’s.
Windows Domain Integration. The Gateway automatically authenticates users against the Windows user database during enrolment, to identify the user before a certificate is issued. Once the certificate is issued, the user authenticates him/herself using the certificate and a private key pass-phrase.
Certificates and User Management
Client certificate enrolment from @TheOffice Certificate Authority
User management on Windows domain, access limited to a group in the
domain
No additional charge for
certificates; generated by the built in CA
Support for private key backup on gateway (Roaming certificates)
