100 likes | 358 Views
Ceedo for Call Center Presentation The Problem Ceedo for Citrix quick overview Ceedo for Citrix security measures. Ceedo for Citrix. Optimal User Experience & Maximum IT Control. The Problem.
E N D
Ceedo for Call Center Presentation The Problem Ceedo for Citrix quick overview Ceedo for Citrix security measures Ceedo for Citrix Optimal User Experience & Maximum IT Control
The Problem • End-users are required to install all the components that make up your remote connection infrastructure on there own. Including: • Citrix Receiver • VPN SSL • Two Factor Authentication • Browser configuration etc. • Novice end-users may result in high helpdesk costs • Unmanaged PCs pose potential security risks • Managing the remote PCs is virtually impossible as they are beyond the IT’s reach
The Solution Plug-and-Play Citrix Receiver with Beefed-Up Security • Mount all the applications that make up your remote Citrix solution on a centrally managed workspace that can be fitted on 2FA and Encrypted USB devices(and even turn encrypted devices into 2FA devices…) Citrix Receiver client 2FA Soft-token or device middleware Secure Browser (with add-ons) Antimalware scanners, AC, etc. Additional Apps (and add-ons) User rights and policies VPN SSL and related add-ons
Ceedo Workspace Client - features Plug-and-Play Centrally Managed Online/Offline Zero Footprint / Sandbox
Taking Care of Security Mitigating Risks and Elevating Security
Recommended Security Measures • Use hardware with encryption and active anti-malware scan • Add soft Two Factor Authentication (or deploy on physical 2FA hardware devices) • Whitelist processes that are allowed to run in Ceedo (+MD5 signatures) • Turn-on Ceedo’s antivirus detection and OS patch level. • Use a VPN-SSL solution with strong Access Control benchmark settings • Use an independent browser rather than the virtualized “mapped” IE • Add to the internal browser safe browsing add-ons and configurations • Configure Ceedo Enterprise to block writing to host drives, printers, etc. • Leave the data in the datacenter or use Citrix’s ShareFile / similar solution • Employ 3rd party anti-malware, security applications, soft-biometric apps, etc. • *In 2FA devices - Mount components on read-only partition
Example of Security Flow User plugs in device Encrypted drive password check Encrypted drive runs antivirus scan Drive is decrypted Ceedo checks host antivirus, firewall, network connection, etc. Ceedo checks processes MD5 signature (continuous throughout session) Ceedo enforces host recourse accessibility and Ceedo updates Ceedo sandbox fires-up with independent runtime environment Second antivirus and/or antimalware scan Two Factor Authentication software/middleware VPN SSL (can include second access control check, such as Juniper SSL) External solution’s security (such as Citrix’s own security features)
Workspace Leakage Protection • Device BindingWorkspaces licenses are device-bound and cannot work if copied to unauthorized devices + most cases of copping a workspace will break it. Ceedo
Two Factor Authentication – One Solution: Two Options • Mount pre-configured, ready-to-run, plug-and-play PKI middleware and remote connection solutions on 2FA devices’ flash memory HARDWAREExtend 2FA USB devices with plug-n-play pre-configured Public Key Middleware and remote office applications such as Citrix Receiver, VNC, VPN-SSL tunnels, etc. • Mount pre-configured, ready-to-run, plug-and-play 2FA security SOFTWARE tokensWith software based 2FA solutions, such as RSASecurID Software Token, installed into Ceedo’s Workspace, any portable storage device can turn into a 2FA device. Citrix Receiver VPN SSL Add-on PKI Middleware Configured Browser Data & User Policies USB Flash 2FA Device