|
|
Feel Good About Your Network
|
|
IDsec Limited
31-33 College Road
Harrow, Middlesex
HA1 1EJ
United Kingdom
(Map)
T: 020 8861 2001
F: 020 8861 3433
www.idsec.co.uk
Copyright © 2008
IDsec Ltd
5.08
|
|
|
|
|
|
|
|
|
 |
AppGate is a complete solution for access control. It provides for
trusted users outside the network as well as untrusted users inside,
supporting a wide range of devices.
|
|
|
|
| Fuzzy Security Perimeters |
|
|
|
Not so long ago there was just the inside and the outside. Network
security was mostly about stopping intruders from breaking into the
internal network.
But now the boundaries are more blurred. Significant numbers of
trusted users are on the
outside - for example, home workers and mobile sales teams - but the
internal network may be used by outsiders, such as
contractors and third-party support staff.
Few organisations can ignore the need to provide flexible methods of
working, but
complex deployments based on point solutions can bring their own
problems.
|
|
|
By putting multiple functions into one system, a single AppGate appliance can replace a number of point
solutions:
-
Internal Security Domains
|
|
|
With AppGate, you can transform a mobile phone into an
integrated part of the network, without having to lower security
standards.
By supporting a wide range of devices, AppGate brings all PCs and
mobiles into the solution. It can also give different access rights
to different device types, so that, for example, the facilities
offered to connections from an Internet cafe may be limited.
Support for roaming means that connections are maintained
as the user moves about, even between different mobile networks -
this includes laptop users with 3G or GPRS data-cards moving from
fixed to wireless connections. AppGate's data compression makes the
most of limited bandwidth and minimises traffic charges.
|
|
|
AppGate lets you provide remote workers and partners with
secure, role based and granular access from any device.
Users can be assigned roles that provide only the services
that are relevant to their job and location.
Authentication can make use of smart-cards,
tokens, SMS, certificates or passwords, and the AppGate server
provides full inter-working with existing LDAP or Radius servers.
A variety of encryption standards are supported, but the encryption
used for a particular session does not depend on the browser's settings and can be controlled
by the system administrator.
Finally, everything that happens on the network is logged, so
security and compliance requirements can easily be met.
|
|
|
When remote users are allowed into the network,
AppGate enforces
specific policies to make sure that the services provided to users match
their authorisation.
Machines which fail to meet certain criteria may be given no
access at all until they are remedied. For example, inside the office
network it is essential that viruses are stopped before they can
spread,
and AppGate does this by applying rules
to connecting devices.
If necessary, a centrally controlled personal firewall can be used to
protect each client. For example, it can block all traffic to and
from the Internet while internal systems are being accessed, to stop
the device becoming a relay.
|
|
| Internal Security Domains |
|
|
|
Internal networks are an increasingly untrusted environment: staff
bring laptops from home, temporary workers are
given access to the
network and some servers have their own routes to the outside world.
To protect critical
information such as development data from unauthorised access,
at-risk servers or networks can be separated from the main
network. By segmenting the internal network, servers are separated from
the user communities and
critical data is protected.
|
|
|
IDsec is an authorised partner of AppGate Network Security AB.
Our trained engineers can provide you with the most appropriate
solution and
ensure that it is configured to match your needs.
|
|
|
The first AppGate system was delivered in 1997 to a company in the
defence sector, followed by a deployment in a university.
The core concept behind the AppGate solution remains the same, to protect
information and give controlled access.
Over the years the company has been able to push the limits of what is
possible in one secure solution, being
the first to introduce features such as mobile support,
integrated personal firewall and secure instant messaging.
|
|
