Upload File

securing the mobile workforce

2
HOW IT WORKS 1. Shut down host computer 2. Insert IronKey Workspace device into USB slot 3. Reboot 4. Authenticate user identity to device 5. You’re now in the Zone Host PC Boot from USB IronKey Workspace SECURE USB DEVICES IronKey Workspace MWES Edition Strong Preboot Authentication Hardware encrypted operating system, applications and data SECURE USB DESKTOP MAKES ANY COMPUTER A FULLY TRUSTED, IT-MANAGED SYSTEM IronKey Workspace Microsoft Windows Embedded Standard (MWES) Edition allows users to transform any computer into a trusted Microsoft Windows environment, with all the security of a standard IT-managed system. When the user disconnects, they take everything with them, and no trace of their presence remains. IronKey Workspace MWES Edition provides Microsoft Windows native boot on a secure USB drive. Virtualization-free, it yields a rich user experience. Unlike competing solutions, integrated provisioning and management components provide quick and secure deployments, even to extremely large user populations. SECURITY IronKey Workspace MWES provides AES-256 bit full disk encryption for the entire operating system and all user data. This encryption is verified in hardware for strong security that meets the regulatory requirements for the Federal Information Processing Standardization (FIPS) 140-2, Level 3 validation. Full isolation of the user environment is provided, preventing transfer of malware or user data to or from the host computer. The IronKey Workspace MWES solution disables the host hard drive sub system. Furthermore, the portable operating system is protected against tampering, with in-hardware prevention of access outside of the boot environment. BENEFITS • Direct-boot, virtualization-free, secure portable Microsoft Windows • Rich user experience and rapid performance • Unique Adaptation™ device driver technology • Optional Crossover Storage partition • Full customer control of desktop image • No reliance on network connectivity WHERE IT’S NEEDED TELEWORKING Users can work remotely or at non-permanent locations, whether the home worker, someone on the road, or a soldier in-theatre. TEMPORARY PERSONNEL Contractors and other temporary workers can be given an environment to use on their own computers, remotely revocable at any time. DISASTER RECOVERY When normal systems are unavailable because of weather conditions, health quarantines, or terrorism, full work environments can be distributed easily. WORKSPACE SEPARATION Allow use of a single computer, even when regulatory or security issues demand that users separate their work environments. SECURING THE MOBILE WORKFORCE IRONKEY WORKSPACE MICROSOFT WINDOWS EMBEDDED STANDARD EDITION

Upload: others

Post on 19-Mar-2022

4 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: SECURING THE MOBILE WORKFORCE

HOW IT WORKS 1. Shutdownhostcomputer

2. InsertIronKeyWorkspacedeviceintoUSBslot

3.Reboot

4.Authenticateuseridentitytodevice

5.You’renowintheZone

HostPC

BootfromUSB

IronKeyWorkspaceSECUREUSBDEVICES

IronKeyWorkspaceMWESEdition

StrongPrebootAuthentication

Hardwareencryptedoperatingsystem,

applicationsanddata

SECURE USB DESKTOP MAKES ANY COMPUTER A FULLY TRUSTED, IT-MANAGED SYSTEMIronKeyWorkspaceMicrosoftWindowsEmbeddedStandard(MWES)EditionallowsuserstotransformanycomputerintoatrustedMicrosoftWindowsenvironment,withallthesecurityofastandardIT-managedsystem.Whentheuserdisconnects,theytakeeverythingwiththem,andnotraceoftheirpresenceremains.

IronKeyWorkspaceMWESEditionprovidesMicrosoftWindowsnativebootonasecureUSBdrive.Virtualization-free,ityieldsarichuserexperience.Unlikecompetingsolutions,integratedprovisioningandmanagementcomponentsprovidequickandsecuredeployments,eventoextremelylargeuserpopulations.

SECURITY IronKeyWorkspaceMWESprovidesAES-256bitfulldiskencryptionfortheentireoperatingsystemandalluserdata.ThisencryptionisverifiedinhardwareforstrongsecuritythatmeetstheregulatoryrequirementsfortheFederalInformationProcessingStandardization(FIPS)140-2,Level3validation.

Fullisolationoftheuserenvironmentisprovided,preventingtransferofmalwareoruserdatatoorfromthehostcomputer.TheIronKeyWorkspaceMWESsolutiondisablesthehostharddrivesubsystem.Furthermore,theportableoperatingsystemisprotectedagainsttampering,within-hardwarepreventionofaccessoutsideofthebootenvironment.

BENEFITS

•Direct-boot,virtualization-free,secureportableMicrosoftWindows

•Richuserexperienceandrapidperformance

•UniqueAdaptation™devicedrivertechnology

•OptionalCrossoverStoragepartition

•Fullcustomercontrolofdesktopimage

•Norelianceonnetworkconnectivity

WHERE IT’S NEEDED

TELEWORKINGUserscanworkremotelyoratnon-permanentlocations,whetherthehomeworker,someoneontheroad,orasoldierin-theatre.

TEMPORARY PERSONNEL Contractorsandothertemporaryworkerscanbegivenanenvironmenttouseontheirowncomputers,remotelyrevocableatanytime.

DISASTER RECOVERY Whennormalsystemsareunavailablebecauseofweatherconditions,healthquarantines,orterrorism,fullworkenvironmentscanbedistributedeasily.

WORKSPACE SEPARATION Allowuseofasinglecomputer,evenwhenregulatoryorsecurityissuesdemandthatusersseparatetheirworkenvironments.

SECURING THE MOBILE WORKFORCEIRONKEY WORKSPACE MICROSOFTWINDOWSEMBEDDEDSTANDARDEDITION

Page 2: SECURING THE MOBILE WORKFORCE

Imation, the Imation logo, IronKey and the IronKey logo are trademarks of Imation Corp. and its subsidiaries. All other trademarks are property of their respective owners. (01/13)

IronKey, the mobile security portfolio of Imation Corp.

PERFORMANCE, USABILITY, AND PORTABILITYUsers,especiallyteleworkersisolatedfromanormalofficeenvironment,needahigh-performanceworkspacetokeepthemconnectedandengaged.Virtualization-free,IronKeyWorkspaceMWESEditiondirectlybootsWindows,meaningnoextrasoftwarelayers,nolimitationsonmemoryusage,andfulluseofmulti-coreprocessors.UniqueAdaptation™technologycanconfiguredevicedriversautomatically,deliveringthevideo,sound,andotherhardwaresupportdemandedbyapplicationssuchasvideoconferencing.

DevicescanoptionallycarryaCrossoverStoragepartition,allowinguserstosharefilesbetweenthebootableoperatingsystemandregularcomputers.Compatiblewith95%ofsystems,andafulldesktopthatdoesn’trequirenetworkconnectivity,unlikethin-clientsolutions.

DEPLOYMENT AND MANAGEMENTIronKeyWorkspace’sdeploymenttoolsgivecustomersfullcontrolofthedesktopimage,allowingOShardening,componentaddition/removal,andapplicationinstallation.Onceready,thisimagecanbetransferredtothousandsofdevicesquicklyandefficiently,withoutanyinvolvementatallfromIronKey.

AllIronKeyWorkspaceMWESdevicesarecontrolledbyIronKey’sACCESS™Enterprisemanagementplatform,whoseActiveDirectoryintegrationallowspolicyenforcementbothwithintheorganizationandovertheInternet.Allfeaturesaredeliveredthroughacustomer-premisesserver,withoutthecostsorsecuritycompromisesofacloud-basedservice.

FIPS 140-2, LEVEL 3 VALIDATED**IronKeyWorkspaceuseshardwarethatmeetsthemostdemandingregulatoryrequirementsfortheFederalInformationProcessingStandardization(FIPS)140-2,Level3validation.**FIPS140-2Level3ValidatedCryptographic

ProcessorCertification#1269

LEVEL 3FIPS 140-2

Validated

SECURING THE MOBILE WORKSPACE

TECHNICAL SPECS

SECURITY FEATURES •AES-256CBChardware-based

fulldiskencryption•FIPS140-2Level3Certified**•IsolatedOSpartition•Nointeractionwithhostharddrive•Directdevicecommunications,

NISTSP800-56Acertified•ManageablewithIronKeyACCESSEnterprise

PREBOOT AUTHENTICATION •Strongpassword,verifiedinhardware

SOLUTION MANAGEMENT•O/Sandapplicationupdatesvia

WSUS,SCCM,others•Userself-issuance•Remotepolicyupdates•Remotedevicerevocation•Userself-rescue•Userandgrouppolicies(ActiveDirectory)•InternetGatewayforsecuremanagement

DEPLOYMENT TOOLS•IronKeyWorkspaceAppliance

(36-portand1-portavailable)•IronKeyWorkspaceImagingUnits

BOOTABLE OPERATING SYSTEM•MicrosoftWindows7

MINIMUM REQUIREMENTS•MicrosoftSoftwareAssurance•Minimum1GBRAM•AbilitytobootfromUSB

SALES CONTACTSWEBSITE www.ironkey.com

US AND CANADA [email protected]+18884357682or+14088794300

[email protected]+44(0)1344402013

ASIA [email protected]+6564997199


Securing Multiple Mobile Platforms - ETSI

Securing Relevant ESI in Dynamic Mobile Environments of ...€¦ · of Mobile-First Custodians Securing Relevant ESI in Dynamic Mobile Environments. ... management service ... any

SAS-Securing-our-workforce-June-2017.pdf - SAS … · SAS Anaesthetists – Securing our Workforce Introduction The Royal College of Anaesthetists undertook a comprehensive ... Reasons

Securing the Mobile enterprise

Mobile Electronic Identity: Securing Payment on Mobile Phones

SECURING ULTRA-BROADBAND MOBILE ACCESS

SECURING AUSTRALIA’S MATHEMATICAL WORKFORCE | STAGE 1 · 7 securing australia’s mathematical workforce | stage 1 Approximately 64 per cent of the participant cohort was male and

Rp Securing Mobile Devices

Mapping the Divide between OT and IT - TMCnet · Juniper Networks Mobile Threats Report 2013 Mobile Security Securing a mobile workforce - BYOD Cloud Security Protecting sensitive

Securing mobile population for White Hats

Advanced Manufacturing 2018 - 2020 · Ensuring a Talented Workforce. Skills for Growth Action Plan for Advanced Manufacturing. 5. Securing a skilled workforce. Securing a future talent

Securing the Workforce

Securing Mobile - A Business Centric Approach

CISCO Mobile Workforce

Securing Mobile Apps - Appfest Version

Securing the future workforce supply

Securing Mobile Workforce · MOBILE USERS Solution: Prisma Access Scalable Remote Access for Mobile Users and Branch in Secure SD-WAN model • Deploy Quickly: Connect users to the

Securing the Enterprise Mobile Perimeter

Mobile Workforce Management - BICSI€¦ · What is Mobile Workforce Management? Mobile ... solution providers ... Xora Mobile Workforce Management - Your Competitive Advantage.ppt

Empowering and securing your Firstline Workforce

Securing Mobile Devices: Present and Future

Securing Your Wherever, Whenever Workforce...Securing Your Wherever, Whenever Workforce 4. Security Starts with Your Mobile Workers Employees today rely on a dizzying combination of

Securing Mobile Devices for BYOD Environments

BRIEFING PAPER SECURING MOBILE APPS LONG TITLE€¦ · Information Security Forum Securing Mobile Apps: Embracing mobile, balancing control 3 Each mobile device is a virtual gold

Mobile Workforce Applications

SECURING YOUR MOBILE COMMERCE - ISACA · SECURING YOUR MOBILE COMMERCE K.Seeburn | Aug.29.2014 . AGENDA 1. ... FOR SECURING YOUR MCOMMERCE Enterprises should analyse and choose at

Microsoft best practices for securing your remote workforce

HP Mobile Workforce

Securing mobile devices_in_the_business_environment

WFMS Workforce Management Mobile Solution - samo-asseco.com · WFMS - Workforce Management Mobile Solution Die Workforce Management Mobile Solution WFMS ist die Lösungsplattform

Securing Mobile Payments

Securing Mobile Device Access

Securing mobile devices 1

SECURING AUSTRALIAS MATHEMATICAL WORKFORCE | STAGE ï · SECURING AUSTRALIAS MATHEMATICAL WORKFORCE | STAGE ï 5 . FOREWORD . Optimisation is an increasingly crucial field for industry

Securing Mobile Devices