From secure Internet access to a secure endpoint
A workstation without Internet access is nowadays unconceivable. However, unsecured Internet access and emails are still the biggest gateway for malicious software. For instance, ransomware usually finds its way into the computer when surfing or it is hidden in email attachments. Although virus scanners and firewalls can increase protection at the technical level, the user's behaviour in the Internet danger zone remains uncontrollable.
The solution would be to restrict Internet access or to only allow access on special PCs that are isolated from the internal network – however, modern demands on the workstation environment are different: One should always be able to work comfortably, safely and efficiently with any application and from anywhere.
As a safeguard against Internet attacks, the German Federal Office for Information Security (BSI) has developed the 'Remote-Controlled Browser System', short ReCoBS. The Internet browser is not executed on the local system that must be protected but in a quarantine system that is implemented outside the sensitive network. Only image and sound data are transmitted over a secure gateway between the sensitive workstation and the quarantine system. This effectively prevents the exploitation of vulnerabilities, the infiltration of malicious software and/or unnoticed data leaks.
Based on this, secunet has created the secunet safe surfer – an intelligent IT security solution for organisations with increased protection requirements.