|
Table of Contents » eBLVD » Security
Security
« Customer Support | Main | System Requirements »
In eBLVD Meeting content is secured using 128-bit SSL encryption and a dual-level password protection scheme.
Both eBLVD Remote and eBLVD Online Meetings encrypt all outgoing packets coming from participants PCs, all display packets being returned to participants PCs from the host, and all file, clipboard, and chat packets being transmitted.
This method of encryption reliably secures sensitive data travelling over the Internet before it reaches the remote screen. Both the participants' (client) and presenter's (server) encryption use the RC4 algorithm with 128-bit SHA and MD5 keys.
PC Access Security
PCs within your network must have the eBLVD HOST applet installed and in order to be accessed remotely.
The HOST applet may be turned on and off at will. Installing
eBLVD requires physical access to the PC. It is not possible to remotely install or use a Trojan to "plant" the eBLVD HOST on a PC.
PCs are added by visiting eBLVD's Web site from each PC. The PC's owner must enter a valid sign-in and account password to gain access. It is not possible to reset the PC access password without supplying the sign-in and account password used to register the PC.
Protecting Confidential Data
eBLVD uses a highly compressed, encrypted stream to ensure data confidentiality without sacrificing performance.
All traffic between the eBLVD browser client and PC, including screen images, file transfers, copy/paste operations, keyboard/mouse input and chat text, is protected with end-to-end 128-bit SSL encryption.
Multiple, Nested Passwords
eBLVD uses multiple, nested passwords to keep intruders away. According to eBLVD cryptographic techniques are used to ensure that sensitive data - sign-ins and passwords - and they are never sent or stored in plain text.
The eBLVD RELAY authenticates itself to browser clients by supplying a digital certificate, issued by a trusted authority. Clients authenticate themselves to the eBLVD RELAY by supplying an account sign-in and password, exchanged over SSL.
Inactivity Timeouts
Users may walk away from public PCs without logging out or leave home PCs
unattended. eBLVD addresses this security issue by applying inactivity timeouts.
Users are automatically logged out of the eBLVD.com Web site if their SSL session is inactive for fifteen minutes.
OS-Level Access Control
eBLVD leverages the OS-level access controls already in place on the corporate LAN. Simply leave the HOST PC in a screen-locked or logged-out state. When the eBLVD connects, the remote user must enter a Windows sign-in/password to access the PC and be granted file, host, and domain-level permissions associated with his or her account. In other words, the remote user does not have tunneled access to the enterprise network - he or she only has access to a single PC's desktop, and is subject to access controls already in place for that PC.
Controlled Participant Invitation Periods
Meeting Hosts invite others to access their PCs using eBLVD. By accessing the eBLVD Meeting Center, the HOST PC can issue an email invitation that expires after the meeting. The owner must supply his or her account sign-in and password to create invitations. The RELAY then sends an email message to the specified address containing a one-time access URL the guest will follow to get to eBLVD's Web site.
Access “By Permission” is Required
Once at the web site, the guest clicks on a button to download the eBLVD remote
plug-in. Once the remote guest requests admission to the HOST PC, a pop-up window is displayed on the HOST PC, requiring manual authorization to complete the process.
Grant/Revoke Control or View-Only Options
Two participant access modes are supported: a view-only mode and a full-control mode. In view-only mode, the remote participant can view, but cannot initiate desktop actions or transfer files. Full-control mode offers the same access normally granted to the PC's owner. The HOST PC can of course end the eBLVD session at any time by disconnecting the guest.
Password Protection
eBLVD requires that every password be at least six characters. This requirement helps to prevent accounts from being configured with easily compromised passwords.
Access Awareness
Whenever a client connects to a PC running the eBLVD HOST, the ‘connected participant’ icon appears on the HOST PC's system tray. This notification makes sure that the PC's owner is always aware of the eBLVD session, preventing
a "lurker" from silently watching local desktop activity.
eBLVD provides its online meetings and web conferences with multi-level authentication and state-of-the-art encryption to keep corporate traffic safe.
The end result: eBLVD provides world-class, secure, and robust web conferencing services.
Detailed Session Logs
The eBLVD HOST PC logs additional information for each connection, such
as date and time and length of connection period.
For more information see eBLVD Security Guide (PDF 6 pages).
« Customer Support | Main | System Requirements »
Posted on June 21, 2003 at 02:33 PM
Updated on March 22, 2004 at 01:53 PM
|
Facilities
