tft13 - nathan mcneill, securing remote support

Bomgar Product Strategy


Company Overview


200 Fatalities Per Year


1% Of Breaches in Study 47%

Of Breaches in Study

Physical Theft Remote Access


Remote Support (Access)

Service Desk (Process)

Systems Management (Infrastructure)

Support

Incident

Incident

Resolved

Infrastructure Process Access

Bomgar Product Strategy Why You Need Access

Error!

2

1 3

5

4

6


Not This Kind of Access


Support Rep End-User

Error!

Error!


A Mobile Environment


VPN

Point-to-Point Tools


Inadequate Controls


2011 Data Breach Investigations Report

– Verizon Business RISK Team

The Usual Suspects


2010 Data Breach Investigations Report – Verizon Business Risk Team


2010 Global Security Report – Trustwave SpiderLabs


In approximately four of 10 hacking-

related breaches, an attacker gained

unauthorized access to the victim via

one of the many types of remote

access and management software.

Rather than for internal usage, most of

these connections were provisioned to

third parties in order to remotely

administer systems. 2009 Data Breach Investigations Report – Verizon Business Risk Team


42%

34%

24%

9%

21%

2008 Data Breach

Investigations Report

– Verizon Business

Risk Team


“Legacy remote control tools are incapable

of supporting increasingly complex

environments, and companies must find

new ways to provide support services to users.”

P2

─ PC Remote Control Security: Risks & Recommendations Gartner, Apr 2009

Bomgar Product Strategy Enterprises are Like Opera Houses

Pretty and Polished On-Stage


Backstage Filled with Secret Passages


Translation: You Should Be Afraid


A New Twist


Mobile Device Remote

From

Remote To Functionalities

Screen

Sharing

System

Info Chat

File

Transfer

Screen

Capture

Remote

Config

BlackBerry®

Windows

Mobile(1)

Android™

iPad®

iPhone®

(1) Windows Mobile 6.5 and Below

(2) For carriers and device manufacturers. Not available for all businesses

(2) (2)


1. Architecture

2. Authentication

3. Access Controls

4. Audit


1. Architecture


“There are three basic forms of PC

remote control: client/server (agent-

based), Web-based (agentless) and

appliance-based (agent not

required).” P4

─ PC Remote Control Security: Risks & Recommendations Gartner, Apr 2009


• LDAP

• RSA/RADIUS

• Kerberos


• Group Policies

• System-Level Permissions − Remote Control

− Unattended Access

− Command Line

− File Transfer

− Script Usage

• Session-Level Permissions − Access Elevation

− Collaboration Settings

− Team Membership


• Customer-initiated

• Remote Control or View Only

• Restrict Access by Application

• Over-Riding Mouse Control

• Prominent "Stop Session" Button

• Notifications/Permissions for All Rep

Actions

Bomgar Product Strategy Vendor Controls

•Dedicated Silo for Each Partner

•Per-Partner Access & Security Policy

•Integration with Access Directories

•Policy-Based Collaboration with

Internal Teams

•Direct or Accompanied Access to

Systems

•Ad-Hoc, or Ongoing Access

•Complete Audit Trail of Partner Access


• Detailed Session Logs − Session Membership

− Activity Transcripts

− File Transfers

− Survey Responses

• Video Session Recording − Screen Sharing

− Command Line Sessions

• Track Admin Changes Via Syslog

• Integrated with Service Desk / CRM


Real-Time Audit


• Remote Support Is a Current Security Risk

• Remote Support Is Extending to Mobile

• Four ‘A’s Needed for Remote Support Security

tft13 - nathan mcneill, securing remote support

Business

bomgar product strategy1

bomgar product strategythere

bomgar product strategynot

bomgar product strategywhy

bomgar product strategy42

remote support security

access tosystemsad

kind of access