Telework on a Stick – VDI Security on the Fly

EdgeGuard turns any bootable computer, laptop, or tablet into a trusted terminal.  It provides secure thin client network BorderGuard authenticated access for telework, mobile use, from home, or for guest users.  Nothing that resides on the user system can cross over to the “trusted” network.  Nothing from the “trusted” network can cross over to the user system.  EdgeGuard is compatible with most VPNs, VDI environments, user authentication methods, SSL platforms, and other system architecture components without disruption to existing network infrastructure or operational processes.


EdgeGuard enables a secure thin client connection

EdgeGuard Features:

       
  • Built-in multi-factor authentication, PKI, approved cryptography
  •    
  • True layer 2 isolation for network sessions to BorderGuard protected data centers
  •    
  • Strong encryption and authentication - no reported vulnerabilities!
  •    
  • Isolates from the native environment - no session remnants left on endpoints
  •    
  • Highly portable secure access that is easy to install and operate
  •    
  • Compatible with most open architecture computers and access terminals
  •    
  • Compatible with enterprise VPN, applications, and system tools
  •    
  • Supports most user authentication approaches (CAC/PIV, Secure ID, etc)
  •    
  • Minimal impact to existing IT infrastructure or operational processes
  •    
  • Affordable secure network access solution that can extend utilization of legacy assets
  •  


FEATURE BOOT EDGEGUARD VIRTUAL EDGEGUARD
Remote Desktop RDP 6.0 Client Included RDP 6.0 Client Included
VMware View VMware View Open Client Included VMware View Open Client Included
Web Browser Anonymous Web Browsing - Firefox Supported Anonymous Web Browsing - Firefox Supported
CAC-PIV Fully Supported Fully Supported
VPN Support Blue Ridge VPN native.
Compatible with majority of other VPN types including Cisco, Citrix and Juniper.
Blue Ridge VPN native.
Compatible with majority of other VPN types including Cisco, Citrix and Juniper.
Wireless (WiFi) Access Fully Supported Fully Supported
3G/4G Cellular Access Not Supported Fully Supported
Security Block of Local Printing Fully Supported Fully Supported
Anonymity of User Location Fully Supported Fully Supported
PC Platform Support BIOS Supporting USB Boot Windows XP, Serv Pack 2 and above (32 Bit).
Windows VISTA, Serv Pack 0 and above (32 & 64 Bit).
Windows 7, Serv Pack 0 and above (32 & 64 Bit).
Windows 8, Windows 8.1 (32 & 64 Bit).
PC HW Platform Support Min: 1 Gig or more RAM
Min: Wired or WiFi connection
Min: 1.6 GHz or higher 32-bit capable processor
Min: Screen Resolution 800x600
Recommended: Core 2 Duo (>=1.8Ghz) or better;
Recommended: Display resolution 1024 x 768 (or larger)
Min: Pentium 4 with hyper-threading enabled (>=2.4Ghz)
Min: 2.00 GB of RAM;
Min: 200 MB free Hard Disk space




Versatile Form Factors Support a Wide-Range of Uses

Virtual EdgeGuard: Installed software provides a stateless network session initiated by inserting an EdgeGuard security token. The user can then interact with their local desktop or the virtual EdgeGuard desktop. Because these desktops are completely isolated from one another, no data or malicious code can cross between them. Once the secure session is terminated, no transaction or session remnants are left on the PC.

Boot EdgeGuard: Secure sessions are initiated for any USB-bootable system by inserting a special Boot EdgeGuard configured USB device. Before the computer can be booted, the end user is prompted to enter a unique PIN that unlocks the Boot EdgeGuard software createing a stateless runtime environment in memory. This runtime environment does not alter or make any persistent configuration changes to the underlying hardware or to the device’s original software environment. The native operating system is not used nor is the local hard drive accessed in any way.


Example EdgeGuard Solutions

Remote Access to Corporate Computers and Tablets.
Problem:  Employees require access to their corporate desktop from unknown locations, anywhere, any time.
Solution:  The Boot and Virtual EdgeGuard virtual desktop includes an icon for access to the employee’s desktop.  All work is done on the corporate network; no data will leave that network, and no malware will sneak in.

Healthcare – Remote Access from Non-Enterprise Systems.
Problem: A healthcare company needs to allow a doctor’s personal computer access to its systems in order to review patient’s health records, x-rays, schedules, and other private medical data.  Since these are not corporate-owned and maintained devices, the healthcare company cannot guarantee that the doctor’s computer is malware-free and hardened to protect patient information.
Solution: Doctors using Boot EdgeGuard can use any convenient computer for access to patient information.  Once the EdgeGuard device is removed, the computer is returned to its original state with no trace of the connection left behind and the healthcare enterprise is safe.


Civilian Government – Extranet Collaboration.
Problem:  A Government agency must provide access to case files to attorneys, law enforcement organizations, and subject matter experts.  It is critical that no information is removed from the secure centralized data center where the digital case files are stored.
Solution:  Boot EdgeGuard enables “extranet” users to access case files.  EdgeGuard’s authentication ensures only approved users are able to get into the systems. Restricting data from being written to the device or even printed eliminates the chance of data leakage.


Safe Internet Browsing.
Problem:  Executives and other individuals need access to social network Internet sites from the corporate network, but these sites are blocked by the corporate firewall.  Facebook and YouTube are generally blocked by corporate firewalls to keep malware out and prevent data leaks.
Solution: Employees use Virtual EdgeGuard to connect to an offsite BorderGuard with unrestricted Internet access.  Employees can use the browser on their EdgeGuard desktop to securely access any website.  Malware cannot infest the device or the network, nor can it compromise any data on the host PC.



Download EdgeGuard Product Data Sheet: Download Data Sheet

Contact a Blue Ridge Networks cybersecurity professional to learn more about how we can help address your IT security needs.