Deepnet Unified Authentication for Outlook Anywhere
Download
Report
Transcript Deepnet Unified Authentication for Outlook Anywhere
Deepnet Unified Authentication
for
Outlook Anywhere
Outlook Anywhere
- Logon with a Static Password
Exchange Server
1
Logon:
Username/Password
Internet
4
Logon: successful
Outlook Client
RPC over HTTP
2
3
Verify:
Username/Password
Key Benefits:
Key Issues:
No need for VPN
Anywhere Access
Full Outlook Functions
Weak Authentication
Unmanaged Devices
Insecure Local Email History
AD
Verify:
successful
Outlook Anywhere
- Logon with Device Authentication
Exchange Server
1
Logon:
Username
Password
3
6
Username
Password
+
Deepnet
Outlook
Agent
2
Deepnet
Exchange
Agent
9
Username
Password
Logon: successful
4
Outlook Client
RPC over HTTP
5
Verify:
successful
8
Verify:
Username
Password
DevicePass
Generating
Device
Fingerprint
Users are only allowed to use Outlook
Anywhere on registered and trusted
PCs or laptops
7
AD
Deepnet
Authentication
Server
Verify:
successful
Deepnet DevicePass
- Real Device Authentication
Machine Fingerprint
=
Chassis S/N
Motherboard ID
Hard Disk S/N
CPU ID
BIOS
Video Card
Sound Card
Network Card
MAC Address
More…
Enhanced Polices
To achieve the ultimate security, the company can choose to
apply some additional enhanced policies to the users who use
the Outlook Anywhere on laptops, such as: The machine must have Anti-Virus installed & running!
The hard disk must be Full-Disk encrypted!
Problems Solved!
Key Issues:
Deepnet Solutions:
Weak Authentication
Unmanaged Devices
Insecure Local Email History
Strong, two-factor authentication
Managed and Trusted devices only
Enforce Full-Disk Encryption policy