Email us! Subscribe to Liquidmatrix!

SSL VPNs A Good Option For Remote Access

Author: Dave Lewis
October 9, 2007 at 7:43 am · Filed under Mobile, Remote Access

With the modern workforce on the move a lot and things like the cost of fuel on the rise it only makes sense to think of remote access. These solutions help to lower the operating costs for a business and offer greater flexibility to the employee. That is, as long as they are rolled out in a sound fashion. SSL VPNs are one example of a remote access solution that offers people great flexibility. On my personal network I use SSL Explorer as it is a free solution to the home user. It is an extremely feature rich offering. In fact that can also be seen as one of its detractors. For enterprise customers they offer a licensed solution. As well, there is a veritable cornucopia of SSL VPN solutions available. A case in point. I was able to check my email from the coffee shop this morning from my iPod Touch using an SSL VPN.

This morning I found this piece on ARNnet:

Although the benefits of remote access are extensive, the trend challenges organizations to maintain an all-inclusive view of who is entering the corporate network and to create a well-controlled but user-friendly environment to access sensitive information. Security is a prime reason that many organizations resist enabling remote access, or confine it to a select group of users.

Opening the infrastructure for remote connection always involves risk. Without proper safeguards, organizations are susceptible to data and identity theft, network abuse, viruses, worms and other security threats.

To reduce the risk many organizations turn to virtual private networks (VPN), which lets users access the company network via the Internet. Before implementing a VPN solution, it is important to consider not only security issues that can occur when users connect remotely, but to evaluate how much and which information your organization is willing to share over a remote connection.

There is a wide field for you to pick from. Your choice should be based on your security requirements and not what the salesman tells you that you need. This might seem self evident but, time and again I hear stories from folks that bought the wrong solution because the salesperson told them it would do everything that they needed. Even make them coffee in the morning.

If that were true…I’d buy two.

Article Link

Tags: , , ,

Tag It:
  • Digg
  • del.icio.us
  • Slashdot
  • Technorati
  • SphereIt
  • StumbleUpon
  • Fark
  • YahooMyWeb
  • Furl
  • Spurl
  • Ma.gnolia
  • NewsVine
Related Articles:

  • Your August 31st Morning Coffee
  • Cisco Security Advisory: LDAP and VPN Vulnerabilities in PIX and ASA Appliances
  • OpenSSL Crypto Flaw Found
  • Security Briefing: July 8th
  • NIST User’s Guide to Securing External Devices for Telework and Remote Access

    • Apple Ipod, Ipod Nano and Ipod Video News » SSL VPNs A Good Option For Remote Access said,

    October 9, 2007 @ 8:07 am

    [...] Guitar Lifestyle wrote an interesting post today onHere’s a quick excerpt With the modern workforce on the move a lot and things like the cost of fuel on the rise it only makes sense to think of remote access … . I was able to check my email from the coffee shop this morning from my iPod Touch using an SSL VPN Posted in Liquidmatrix Security Digest ( 195 links from 55 sites) by gattaca000 [...]

    Eric said,

    October 9, 2007 @ 9:05 am

    It’s true that there are a lot of options out there for SSL VPNs, and for businesses (as opposed to the freebie you bring up) obviously you need to choose carefully. In our experience (full disclosure: I’m a marketing guy at an SSL VPN manufacturer) we see things breaking down between the kinds of applications that need to be accessed. If you just want basic access to OWA or other web apps, for instance, most of the major players will do the trick. If you’re looking to lock down Windows terminal services or Citrix, then you can narrow the field because not every SSL VPN is interested - or works will with - server-based apps. AEP makes the Netilla SSL VPN which has some neat tricks specifically for terminal server environments (and would work with that iPhone of yours too).

    So shameless plug of the day: http://www.aepnetworks.com/products/ssl_vpn/nsp/overview.aspx

    Dave Lewis said,

    October 9, 2007 @ 9:50 am

    Hmm. I’ll be nice and leave the link. This does not mean that I advocate the product above mentioned by Eric.

    Be your own judge.

    rybolov said,

    October 9, 2007 @ 11:07 am

    Hi Dave

    I work with a managed services provider. We use SSL VPNs but only for RDP into terminal servers with cut-n-paste disabled. The terminal servers are on the same network segment as our workstations (separate from the corporate network, TYVM). What that gives us is view-only access into our managed environment. That way, I have tier-III guys who can fix what they need to, but they still don’t have full VPN access so I don’t have to worry about data leaking out *that* way.

    Dave Lewis said,

    October 9, 2007 @ 11:37 am

    @rybolov

    Every little bit helps

    :)

    RSS feed for comments on this post · TrackBack URI

    Leave a Comment