** Products > Unified Access Control from AppGate AppGate is a complete solution for access control. It provides for trusted users outside the network as well as untrusted users inside, supporting a wide range of devices. * Fuzzy Security Perimeters Not so long ago there was just the inside and the outside. Network security was mostly about stopping intruders from breaking into the internal network. But now the boundaries are more blurred. Significant numbers of trusted users are on the outside - for example, home workers and mobile sales teams - but the internal network may be used by outsiders, such as contractors and third-party support staff. Few organisations can ignore the need to provide flexible methods of working, but complex deployments based on point solutions can bring their own problems. * AppGate By putting multiple functions into one system, a single AppGate appliance can replace a number of point solutions: - Mobile VPN - Remote Access - Network Access Control - Internal Security Domains * Mobile VPN With AppGate, you can transform a mobile phone into an integrated part of the network, without having to lower security standards. By supporting a wide range of devices, AppGate brings all PCs and mobiles into the solution. It can also give different access rights to different device types, so that, for example, the facilities offered to connections from an Internet cafe may be limited. Support for roaming means that connections are maintained as the user moves about, even between different mobile networks - this includes laptop users with 3G or GPRS data-cards moving from fixed to wireless connections. AppGate's data compression makes the most of limited bandwidth and minimises traffic charges. * Remote Access AppGate lets you provide remote workers and partners with secure, role based and granular access from any device. Users can be assigned roles that provide only the services that are relevant to their job and location. Authentication can make use of smart-cards, tokens, SMS, certificates or passwords, and the AppGate server provides full inter-working with existing LDAP or Radius servers. A variety of encryption standards are supported, but the encryption used for a particular session does not depend on the browser's settings and can be controlled by the system administrator. Finally, everything that happens on the network is logged, so security and compliance requirements can easily be met. * Network Access Control When remote users are allowed into the network, AppGate enforces specific policies to make sure that the services provided to users match their authorisation. Machines which fail to meet certain criteria may be given no access at all until they are remedied. For example, inside the office network it is essential that viruses are stopped before they can spread, and AppGate does this by applying rules to connecting devices. If necessary, a centrally controlled personal firewall can be used to protect each client. For example, it can block all traffic to and from the Internet while internal systems are being accessed, to stop the device becoming a relay. * Internal Security Domains Internal networks are an increasingly untrusted environment: staff bring laptops from home, temporary workers are given access to the network and some servers have their own routes to the outside world. To protect critical information such as development data from unauthorised access, at-risk servers or networks can be separated from the main network. By segmenting the internal network, servers are separated from the user communities and critical data is protected. * IDsec and AppGate IDsec is an authorised partner of AppGate Network Security AB. Our trained engineers can provide you with the most appropriate solution and ensure that it is configured to match your needs. * About AppGate The first AppGate system was delivered in 1997 to a company in the defence sector, followed by a deployment in a university. The core concept behind the AppGate solution remains the same, to protect information and give controlled access. Over the years the company has been able to push the limits of what is possible in one secure solution, being the first to introduce features such as mobile support, integrated personal firewall and secure instant messaging. * About Us IDsec is an independent company specialising in network security, and has provided penetration tests and intrusion detection systems since 1997. We can assess the security of your enterprise and advise on long-term protection: as we have for a range of blue-chip clients in the banking, telecoms, manufacturing and utility sectors. IDsec Limited 31-33 College Road, Harrow, Middlesex HA1 1EJ, United Kingdom T: +44 20 8861 2001 F: +44 20 8861 3433 W: www.idsec.co.uk All prices exclude VAT and are subject to confirmation. Copyright (C) 2009 IDsec Limited products/appgate/appgate.txt 20091019 (5.09)