- Joined
- Aug 30, 2006
- Messages
- 7,216 (1.09/day)
System Name | ICE-QUAD // ICE-CRUNCH |
---|---|
Processor | Q6600 // 2x Xeon 5472 |
Memory | 2GB DDR // 8GB FB-DIMM |
Video Card(s) | HD3850-AGP // FireGL 3400 |
Display(s) | 2 x Samsung 204Ts = 3200x1200 |
Audio Device(s) | Audigy 2 |
Software | Windows Server 2003 R2 as a Workstation now migrated to W10 with regrets. |
Does anyone have any experience with these two, or similar, security software services? They seem to become more and more prevalent on corporate laptops. My understand ing is they work like this:
laptop...internet...security service provider server....internet...WWW or corporate network.
They are man-in-the-middle software services. The idea being that the security service provider provides a DNS service to control where the laptop can go on the internet, does various malware antivirus stuff on incoming/outgoing, and ensures that data heading to or from the corporate network has been scanned and gatekeepered.
advantage
laptop...internet...security service provider server....internet...WWW or corporate network.
They are man-in-the-middle software services. The idea being that the security service provider provides a DNS service to control where the laptop can go on the internet, does various malware antivirus stuff on incoming/outgoing, and ensures that data heading to or from the corporate network has been scanned and gatekeepered.
advantage
- No need to be overly concerned about firewall or antivirus software being up to date on the laptop, because the scanning is done on all transmitted files on the security service server
- Can have various policies that run “in the cloud” and the laptop is forced to be compliant since all WWW and corporate access passes through the security service provider server first
- Can spy on employees and make sure they arent doing naughty things
- Can spy on employees (this is illegal in many countries)
- To scan the data, all the data on the 3rd party security service server is held unencrypted so that it can check it and scan it. What, private and corporate data stored on 3rd party servers, unencrypted!
- This means all your data is available for data mining by the man in the middle
- If SaaS servers fail, you lose access to your corporate network!
- Various gvt intelligence agencies can monitor your data without you knowing