CyberX Secure WorkSpace (SWS)

Due to the latest Covid-19 pandemic many of us forced to work remotely (from home) and connect to the corporate network mostly via VPN. Some companies in order to increase security add 2FA (two factor authentication) or any other method offers an extra layer of security.

Questions : Are these methods really secure ? Do you trust the home PCs of your users ? What if those PCs have a key logger or a virus that allows a remote attacker to use these PCs as gateway to your corporate network ?

Solution : CyberX Secure WorkSpace

The CyberX Secure WorkSpace is a minimal operating system installed on a portable bootable USB stick and runs completely in memory.

How it works

Just plug your USB Stick on your PC and restart . All modern PCs will boot and load our minimal Secure Desktop in minutes.  The process is fully automated and fully trasparent to users. The user has to put just a set of credentials (user/pass) to authenticate from the corporate ESG FW in order to download his/her profile and remote connection application links (app_links) .

Once authenticate, user's desktop will be re-loaded. A custom/new start-up menu and a  new desktop with the user's application and tools will appear. NONE of these are included on the USB. ALL of the application links will be downloaded from the ESG Secure Firewall through a secure channel.

The SWS platform supports various communication protocols  (RDP, SPICE, Windows Remote Apps, Linux Remote Apps, Local Applications) and gives System Administrator the flexibility to customize per user a dynamic start-up menu . Application launchers (app_links) created on the ESG FW but will  actually run on a server farms (or pcs) that are hosted on your premises (behind your FW).

 

Schematic Diagram

Basic setup for using SWS. Remote users connect to your ESG FW, authenticate and download their profiles which include their application links. Since, this is a remote connection (outside their work enviroment) the SWS client will start a secure VPN connection on the background prior receive and setup the user's application link.

Behind your ESG FW a server farm with a combination of Windows, Linux, Unix servers will server the apps.

Example: Run Microsoft Word on SWS (remote user)

  • Install MS Office to your windows 2012 server and configure the MS Word as a RemoteApp.
  • Create an application launcher to your ESG FW and connect it to your Windows 2012 srv.
  • Add the application to the user profile
  • The application link will appear on the desktop of the remote user as a native (local) application. 

Note: The application although it seems to run locally (as native app), it actually runs on the remote server.

 

Video Demo

SWS running as a KVM virtual machine which booted from external USB Stick.

In this demo you can see the basic functionality and capabilities of SWS :

  • Connection to Windows PC (RDP)
  • Linux remote application launcher (Virt-Manager)
  • Windows Remote Application Launcher
  • Local Application launcher

 

Authentication

Authentication is through ESG's Secure Desktop module via SSL.

Customization

Can be customized for every company (company logos etc).

CyberX Secure WorkSpace (SWS)

Due to the latest Covid-19 pandemic many of us forced to work remotely (from home) and connect to the corporate network mostly via VPN. Some companies in order to increase security add 2FA (two factor authentication) or any other method offers an extra layer of security.

Questions : Are these methods really secure ? Do you trust the home PCs of your users ? What if those PCs have a key logger or a virus that allows a remote attacker to use these PCs as gateway to your corporate network ?

Solution : CyberX Secure WorkSpace

The CyberX Secure WorkSpace is a minimal operating system installed on a portable bootable USB stick and runs completely in memory.

How it works

Just plug your USB Stick on your PC and restart . All modern PCs will boot and load our minimal Secure Desktop in minutes.  The process is fully automated and fully trasparent to users. The user has to put just a set of credentials (user/pass) to authenticate from the corporate ESG FW in order to download his/her profile and remote connection application links (app_links) .

Once authenticate, user's desktop will be re-loaded. A custom/new start-up menu and a  new desktop with the user's application and tools will appear. NONE of these are included on the USB. ALL of the application links will be downloaded from the ESG Secure Firewall through a secure channel.

The SWS platform supports various communication protocols  (RDP, SPICE, Windows Remote Apps, Linux Remote Apps, Local Applications) and gives System Administrator the flexibility to customize per user a dynamic start-up menu . Application launchers (app_links) created on the ESG FW but will  actually run on a server farms (or pcs) that are hosted on your premises (behind your FW).

 

Schematic Diagram

Basic setup for using SWS. Remote users connect to your ESG FW, authenticate and download their profiles which include their application links. Since, this is a remote connection (outside their work enviroment) the SWS client will start a secure VPN connection on the background prior receive and setup the user's application link.

Behind your ESG FW a server farm with a combination of Windows, Linux, Unix servers will server the apps.

Example: Run Microsoft Word on SWS (remote user)

  • Install MS Office to your windows 2012 server and configure the MS Word as a RemoteApp.
  • Create an application launcher to your ESG FW and connect it to your Windows 2012 srv.
  • Add the application to the user profile
  • The application link will appear on the desktop of the remote user as a native (local) application. 

Note: The application although it seems to run locally (as native app), it actually runs on the remote server.

 

Video Demo

SWS running as a KVM virtual machine which booted from external USB Stick.

In this demo you can see the basic functionality and capabilities of SWS :

  • Connection to Windows PC (RDP)
  • Linux remote application launcher (Virt-Manager)
  • Windows Remote Application Launcher
  • Local Application launcher

 

Authentication

Authentication is through ESG's Secure Desktop module via SSL.

Customization

Can be customized for every company (company logos etc).

  Under Attack ?
   E-Mail Us Now

 

Screenshots

CyberX Secure WorkSpace (SWS)

Due to the latest Covid-19 pandemic many of us forced to work remotely (from home) and connect to the corporate network mostly via VPN. Some companies in order to increase security add 2FA (two factor authentication) or any other method offers an extra layer of security.

Questions : Are these methods really secure ? Do you trust the home PCs of your users ? What if those PCs have a key logger or a virus that allows a remote attacker to use these PCs as gateway to your corporate network ?

Solution : CyberX Secure WorkSpace

The CyberX Secure WorkSpace is a minimal operating system installed on a portable bootable USB stick and runs completely in memory.

How it works

Just plug your USB Stick on your PC and restart . All modern PCs will boot and load our minimal Secure Desktop in minutes.  The process is fully automated and fully trasparent to users. The user has to put just a set of credentials (user/pass) to authenticate from the corporate ESG FW in order to download his/her profile and remote connection application links (app_links) .

Once authenticate, user's desktop will be re-loaded. A custom/new start-up menu and a  new desktop with the user's application and tools will appear. NONE of these are included on the USB. ALL of the application links will be downloaded from the ESG Secure Firewall through a secure channel.

The SWS platform supports various communication protocols  (RDP, SPICE, Windows Remote Apps, Linux Remote Apps, Local Applications) and gives System Administrator the flexibility to customize per user a dynamic start-up menu . Application launchers (app_links) created on the ESG FW but will  actually run on a server farms (or pcs) that are hosted on your premises (behind your FW).

 

Schematic Diagram

Basic setup for using SWS. Remote users connect to your ESG FW, authenticate and download their profiles which include their application links. Since, this is a remote connection (outside their work enviroment) the SWS client will start a secure VPN connection on the background prior receive and setup the user's application link.

Behind your ESG FW a server farm with a combination of Windows, Linux, Unix servers will server the apps.

Example: Run Microsoft Word on SWS (remote user)

  • Install MS Office to your windows 2012 server and configure the MS Word as a RemoteApp.
  • Create an application launcher to your ESG FW and connect it to your Windows 2012 srv.
  • Add the application to the user profile
  • The application link will appear on the desktop of the remote user as a native (local) application. 

Note: The application although it seems to run locally (as native app), it actually runs on the remote server.

 

Video Demo

SWS running as a KVM virtual machine which booted from external USB Stick.

In this demo you can see the basic functionality and capabilities of SWS :

  • Connection to Windows PC (RDP)
  • Linux remote application launcher (Virt-Manager)
  • Windows Remote Application Launcher
  • Local Application launcher

 

Authentication

Authentication is through ESG's Secure Desktop module via SSL.

Customization

Can be customized for every company (company logos etc).

CyberX Secure WorkSpace (SWS)

Due to the latest Covid-19 pandemic many of us forced to work remotely (from home) and connect to the corporate network mostly via VPN. Some companies in order to increase security add 2FA (two factor authentication) or any other method offers an extra layer of security.

Questions : Are these methods really secure ? Do you trust the home PCs of your users ? What if those PCs have a key logger or a virus that allows a remote attacker to use these PCs as gateway to your corporate network ?

Solution : CyberX Secure WorkSpace

The CyberX Secure WorkSpace is a minimal operating system installed on a portable bootable USB stick and runs completely in memory.

How it works

Just plug your USB Stick on your PC and restart . All modern PCs will boot and load our minimal Secure Desktop in minutes.  The process is fully automated and fully trasparent to users. The user has to put just a set of credentials (user/pass) to authenticate from the corporate ESG FW in order to download his/her profile and remote connection application links (app_links) .

Once authenticate, user's desktop will be re-loaded. A custom/new start-up menu and a  new desktop with the user's application and tools will appear. NONE of these are included on the USB. ALL of the application links will be downloaded from the ESG Secure Firewall through a secure channel.

The SWS platform supports various communication protocols  (RDP, SPICE, Windows Remote Apps, Linux Remote Apps, Local Applications) and gives System Administrator the flexibility to customize per user a dynamic start-up menu . Application launchers (app_links) created on the ESG FW but will  actually run on a server farms (or pcs) that are hosted on your premises (behind your FW).

 

Schematic Diagram

Basic setup for using SWS. Remote users connect to your ESG FW, authenticate and download their profiles which include their application links. Since, this is a remote connection (outside their work enviroment) the SWS client will start a secure VPN connection on the background prior receive and setup the user's application link.

Behind your ESG FW a server farm with a combination of Windows, Linux, Unix servers will server the apps.

Example: Run Microsoft Word on SWS (remote user)

  • Install MS Office to your windows 2012 server and configure the MS Word as a RemoteApp.
  • Create an application launcher to your ESG FW and connect it to your Windows 2012 srv.
  • Add the application to the user profile
  • The application link will appear on the desktop of the remote user as a native (local) application. 

Note: The application although it seems to run locally (as native app), it actually runs on the remote server.

 

Video Demo

SWS running as a KVM virtual machine which booted from external USB Stick.

In this demo you can see the basic functionality and capabilities of SWS :

  • Connection to Windows PC (RDP)
  • Linux remote application launcher (Virt-Manager)
  • Windows Remote Application Launcher
  • Local Application launcher

 

Authentication

Authentication is through ESG's Secure Desktop module via SSL.

Customization

Can be customized for every company (company logos etc).

  Under Attack ?
   E-Mail Us Now

 

Screenshots