|
|
 |
 |
 |
|
 |
|
 |
|
 |
 |
|
     |
||
S3 FAQs > Does sign-on and authentication work if the USB key is lost or stolen? If a key is lost, stolen or user does not have immediate access to a USB port, a temporary solution can be provided. A one-time username/password can be obtained by the company’s IT department; the user can sign on creating a tunnel to the company network. This solution does not support two-factor authentication. > Does S3 work with single sign-on? Our product works hand-in-hand with single sign-on. Single sign-on is performed after the S3 VPN tunnel is created. Single sign-on configuration can be setup by the company’s IT staff and is dependant upon the NAS device implemented at the company site. > Explain IPSec and PPTP at OSI layers 3 vs. SSL at layer 7. What are the vulnerabilities and differences? SSL creates a tunnel at the OSI layer 7 which only offers security for WEB application. This means that users don’t have access to network resources such as file sharing, printers or centralized storage. IPSec and PPTP creates a tunnel at layer 3 which allows access to network resources and all other applications. One of the most intriguing features of S3 is providing a client that embeds encryption at all possible layers with AES at Layer 2, IPSec and PPTP at Layer 3, SSH at Layers 4-5 and SSL at Layers 6-7 all on one key.  > Are we doing any authentication at all now? Or do we always work with the client’s active directory? Does it work with other systems, such as LDAP? Yes. S3 provides Two-Factor secure authentication for the creation of a VPN tunnel. Further user authentication can take place on the company’s NAS through an authentication server to access network resources. Active Directory, LDAP and RADIUS authentication standards are supported. > What are man-in-the-middle attacks? How do we handle them? A man in the middle attack (MITM) is an attack in which an attacker is able to read, insert and modify at will, messages between two parties without either party knowing that the link between them has been compromised. Sweet Spot uses mutual authentication so both ends of the communication are validated and a secure tunnel technique that provides a means by which data can be transferred from one location to another without risk of interception or tampering. > Is throughput speed affected when using S3? Most VPN tunnels have overhead due to encryption. Our current deployment is minimal and is usually unnoticeable to the end user. > How does Remote Desktop Protocol (RDP) work with our remote access? Remote desktop works seamlessly with the S3 Solution. > Does S3 work with desktop firewall security software such as Norton and Zone Alarm? S3 may be blocked by desktop firewalls. A splash screen will pop-up asking the user questions: Allow, Block or Allow-once. Always answer Allow when prompted. This will solve any further issues for the desktop. > Why choose S3? S3 is the only solution that provides secure access to not only remote users but to local, wireless and guests! The S3 Key does not require the end user to install any software or drivers making it very easy and cost effective to deploy. S3 is the only solution that not only makes your network much more secure but simultaneously increases your company’s productivity! |