InstaSafe®Secure Access solution can be now used to ensure that the privileged portion of the application is secured using multiple layers beyond the minimum recommended security layers. The InstaSafe® Secure Access solution comprises of three components, the Controller, Gateway and Client. it compliant.

Controller

The Controller is the heart of the solution and performs:

• Authorisation of the laptop/desktop Client certificate

• Authorisation of the laptop/desktop based on its fingerprint

• Authentication of User based on password and OTP

• Allow or deny access to specific servers on specific ports only after all above conditions are met

Gateway

The Gateway acts as the gatekeeper in the data center encrypting all traffic between the data center and the Controller.

Client

The Client is installed on every employee / contractor laptop or desktop or mobile device. The Client:

• Automatically starts when the laptop / desktop starts

• Provides client certificate to the Controller to establish encrypted tunnel. The Controller only allows the connection to happen if the client certificate is valid

• Provides the laptop / desktop fingerprint. The Controller checks if the laptop / desktop is a known device. If not, the connection is dropped.

• Provides the laptop / desktop compliance status (e.g. AV running status, patch installed, disk encrypted etc.). If the laptop is non-compliant, the connection is dropped.

• Performs all the above checks transparently without bothering the user

• Prompts user for password (optional) and OTP (optional). If any one of it is incorrect, the connection is dropped.

• Forwards all e-gov application traffic through the encrypted tunnel while internet access happens normally.

Using InstaSafe® Secure Access, the privileged access of users to the servers and the applications is highly secured and prevents many different advanced attacks resulting in a significant reduction in security risks of applications