Security

 

Introduction

Security should be a crucial part of a remote access product, no matter for what purposes you are using it; business or personal. ISL AlwaysOn uses maximum security.

Security Layers

Each ISL AlwaysOn connection from a computer to an ISL Conference Proxy server is encrypted with SSL.

ISL AlwaysOn's activities can be monitored by tracking the history of accesses to a computer. This report shows which ISL Online users accessed the computer and when they accessed it.

A user can always lock access to his/her computer. When disabled, that computer becomes inaccessible until further action.

Layer 1 - ISL AlwaysOn computer visibility

To access a remote computer, you need to establish a link between your ISL Online account and a target machine. Each user has their own digitally signed executable identifying their ISL Online user account. No other ISL Online user will be able to see or try to establish a remote connection if the ISL AlwaysOn computer administrator has not installed a customized ISL AlwaysOn program.

The procedure of adding a new computer is described in the Set Unattended Access chapter.

Layer 2 - ISL AlwaysOn computer access password

Installing ISL AlwaysOn on a computer does not automatically grant access to the computer. To enable access, a strong access password must be set first. This password is stored as a hash in the Local Machine registry. The plain text password is not available anymore.

After installing ISL AlwaysOn and setting the access password, remote access for the specific ISL Online user is enabled. Whenever the ISL Online user wants to connect to the remote computer, they need to enter the ISL AlwaysOn access password for each remote access session they start.

Layer 3 - ISL Light remote desktop session security

The remote desktop control session is enabled by ISL Light. ISL Light enables to create an instant remote desktop control session, which is secured with SSL (a 2048/4096-bit RSA key for the handshake and a 256-bit AES session key). Once a session is established, no one can see this session's encrypted data. And when an ISL Light session is ended you cannot connect to the same session again. For more information on ISL Light security, please refer to this link.

Layer 4 - MS Windows OS security

Once an ISL Online user is connected to a remote computer, they can see the Windows console desktop session running on the computer. It is recommended that the user sets passwords for all Windows accounts and disables accounts which are not in use. The user should always log off the computer when not present, so when accessing the computer they needs to type in the Windows account password as well.

Tags: isl alwayson, security

Was this article helpful?