©2009 Desktone, Inc. All rights reserved.  <br />Virtual Desktops:How secure can they be?<br />Danny Allan, Chief Solution...
Agenda<br />©2011 Desktone, Inc. All rights reserved. <br />Traditional Desktop<br />Virtual Desktop Infrastructure (VDI)<...
©2009 Desktone, Inc. All rights reserved. <br />TraditionalDesktop<br />Desktop Virtualization<br />& Cloud Overview<br />
Why the Switch to Cloud?<br />For a variety of reasons, cloud technologies are too compelling to ignore.<br />Dynamically ...
 Reduce cost
 Expedite time to market
 Focus resources
 Do more projects  </li></ul>“Utility” billing (pay as you use)<br />“Unlimited” processing and storage<br />Elasticity to...
©2009 Desktone, Inc. All rights reserved. <br />Desktop Virtualization<br />& Cloud Overview<br />
OS<br />Data<br />Apps<br />Settings<br />Preferences<br />Desktop Management Today<br />©2011 Desktone, Inc. All rights r...
The Promise of Virtual Desktops (VDI)<br />Virtual desktops<br />Centrally managed<br />In IT data center<br /><ul><li>Cos...
IT consolidation
Easier to manage
Happy users</li></ul>©2011 Desktone, Inc. All rights reserved.  <br />OS<br />Data<br />Apps<br />Settings<br />Preference...
… but major BARRIERS exist<br />Traditional VDI Reality<br />©2011 Desktone, Inc. All rights reserved.  <br />Start UpHuge...
Cloud-Based Desktops (DaaS)<br />©2011 Desktone, Inc. All rights reserved.  <br />Business Benefits<br />Desktop Cloud<br ...
Device independence
Lower TCO
Low cash out = low risk
Customer satisfaction</li></ul>From Any Device<br />From Any Location<br />FIXED<br />TELEWORKERS<br />PARTNERS &<br />SUP...
Securing the<br />Desktop<br />
End-to-end Desktop Security<br />Manage<br />©2011 Desktone, Inc. All rights reserved. <br />Ensure the desktop and OS hav...
A desktop management problem<br />©2011 Desktone, Inc. All rights reserved. <br />20 M desktops infected with malware in 1...
Desktop Management<br />Challenge<br />Comprehensive and consistent OS patching and configuration<br />User controls / app...
A desktop protection problem<br />©2011 Desktone, Inc. All rights reserved. <br />1.7 M records known lost on stolen lapto...
http://www.datalossdb.org/</li></li></ul><li>Desktop Protection<br />Challenge<br />Defending the desktop against unauthor...
Desktop Delivery<br />Challenge<br />Eliminating the threat of eavesdropping<br />Ensuring the user can trust the communic...
A User Monitoring Problem<br />©2011 Desktone, Inc. All rights reserved. <br />3M records known stolen by malicious inside...
http://www.kwtx.com/</li></li></ul><li>Desktop User Assessment<br />Challenge<br />Ensuring user behavior conforms to corp...
©2009 Desktone, Inc. All rights reserved. <br />Desktone Overview<br />
Who is Desktone<br />©2011 Desktone, Inc. All rights reserved.  <br />= Cloud-based Virtual Desktops<br />Built from the s...
VDI vs. Cloud based Desktops<br />DaaS<br />VDI<br />
1. IT Friendly Solution<br />Easy to manage<br /><ul><li>On demand desktops: add, remove, & modify at will
Upcoming SlideShare
Loading in …5
×

Virtual Desktops: How Secure Can They Be?

2,319 views

Published on

This presentation by Danny Allan, Desktone's Chief Solution Architect, is an overview of virtual desktop security: concerns, risks, challenges associated with traditional PCs and (VDI) Virtual Desktop Infrastructure, and the benefits of moving virtual desktops to a cloud hosted model to reduce and eliminate security risks associated with traditional desktop management strategies.

Published in: Technology
0 Comments
3 Likes
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
2,319
On SlideShare
0
From Embeds
0
Number of Embeds
13
Actions
Shares
0
Downloads
181
Comments
0
Likes
3
Embeds 0
No embeds

No notes for slide
  • So we’ve seen the hype, but what are they really talking about? In simple terms….what is the Cloud…..and what are the benefits to businesses?The key characteristics of Cloud Computing - it is based on a virtualized infrastructure, is designed to be highly scalable and is provisioned as a service. More specifically:-Most clouds are underpinned by “utility billing”…or pay as you go. Think of your electric bill at home where you pay for only what you use. Same with the Cloud.Generally speaking, Cloud resources are unlimited. Great when you are not sure how much compute power or storage you’ll need for a certain workload. It’s good to know its there if you need it!Another key attribute of the cloud is that you can rapidly scale it up or down….depending on your needs. Again paying for only what you need.Most cloud infrastructure is quick and easy to provision and set up to be easy to self-administerSupporting the “self service” nature of the Cloud, there tends to be a lot of automation to make this easy for the userBenefits to the business – what does this mean to the business that implement the Cloud as part of a comprehensive IT strategy Increased agility, lower cost and better use of resources
  • Why are you looking at desktop virtualization?
  • Cost reduction… equipment, support, software Consolidation into the data centerSecured desktop information at the data centerClaim green
  • Move the stale desktop market to the cloud just as the server market has happenedDesktone’s cloud DaaS model eliminates cost and complexityDesktop clouds give enterprises the full benefits of VDI, without the costs or risksEnterprises outsource the deployment and operationsDaaS reduces the technical expertise required
  • Virtual Desktops: How Secure Can They Be?

    1. 1. ©2009 Desktone, Inc. All rights reserved. <br />Virtual Desktops:How secure can they be?<br />Danny Allan, Chief Solution Architect <br />April 26, 2011<br />
    2. 2. Agenda<br />©2011 Desktone, Inc. All rights reserved. <br />Traditional Desktop<br />Virtual Desktop Infrastructure (VDI)<br />Cloud-based Desktops<br />Desktop Security<br />Desktone Overview<br />Today’s Presenter<br />Danny Allan<br />Desktone<br />Chief Solutions Architect<br />danny.allan@desktone.com<br />
    3. 3. ©2009 Desktone, Inc. All rights reserved. <br />TraditionalDesktop<br />Desktop Virtualization<br />& Cloud Overview<br />
    4. 4. Why the Switch to Cloud?<br />For a variety of reasons, cloud technologies are too compelling to ignore.<br />Dynamically scalable, virtualized resources provided as a service<br />AccessibilitySpeed<br />Cost<br /><ul><li>Maximize revenue
    5. 5. Reduce cost
    6. 6. Expedite time to market
    7. 7. Focus resources
    8. 8. Do more projects </li></ul>“Utility” billing (pay as you use)<br />“Unlimited” processing and storage<br />Elasticity to scale up or down<br />On demand, self-service<br />Highly automated<br />
    9. 9. ©2009 Desktone, Inc. All rights reserved. <br />Desktop Virtualization<br />& Cloud Overview<br />
    10. 10. OS<br />Data<br />Apps<br />Settings<br />Preferences<br />Desktop Management Today<br />©2011 Desktone, Inc. All rights reserved. <br />Tipping point for change is here...<br />Expensive<br />Support-heavy<br />Insecure<br />Migration to Windows 7<br />New mobile access<br />Tighter IT budgets<br />Security<br />
    11. 11. The Promise of Virtual Desktops (VDI)<br />Virtual desktops<br />Centrally managed<br />In IT data center<br /><ul><li>Cost reduction
    12. 12. IT consolidation
    13. 13. Easier to manage
    14. 14. Happy users</li></ul>©2011 Desktone, Inc. All rights reserved. <br />OS<br />Data<br />Apps<br />Settings<br />Preferences<br />Virtual Desktops<br />
    15. 15. … but major BARRIERS exist<br />Traditional VDI Reality<br />©2011 Desktone, Inc. All rights reserved. <br />Start UpHuge up-front costs<br />Many Moving PartsComplex to design & build <br />Operationally IntensiveDifficult to maintain<br />Is It StrategicDo you want to be building and managing data centers<br />
    16. 16. Cloud-Based Desktops (DaaS)<br />©2011 Desktone, Inc. All rights reserved. <br />Business Benefits<br />Desktop Cloud<br /><ul><li>Ease of management
    17. 17. Device independence
    18. 18. Lower TCO
    19. 19. Low cash out = low risk
    20. 20. Customer satisfaction</li></ul>From Any Device<br />From Any Location<br />FIXED<br />TELEWORKERS<br />PARTNERS &<br />SUPPLIERS<br />TEMPORARY OFFICES<br />BRANCH OFFICES<br />
    21. 21. Securing the<br />Desktop<br />
    22. 22. End-to-end Desktop Security<br />Manage<br />©2011 Desktone, Inc. All rights reserved. <br />Ensure the desktop and OS have the needed AV, FW, patches and config<br />Protect<br />Assess<br />Personal<br />Desktop<br />Assess user compliance with business conduct guidelines<br />Defend the desktop from malicious and unauthorized access<br />Deliver<br />Verify that the delivery of the desktop is not monitored or altered<br />
    23. 23. A desktop management problem<br />©2011 Desktone, Inc. All rights reserved. <br />20 M desktops infected with malware in 1H10 in USA<br />* http://www.microsoft.com/security/sir/<br />
    24. 24. Desktop Management<br />Challenge<br />Comprehensive and consistent OS patching and configuration<br />User controls / application controls<br />End point controls<br />AV/FW synchronization<br />Real world example<br />LIHF – 8B security incidents every day<br />Rimecud, Stuxnet<br />Ability to Deliver<br />DaaS – Ability to deliver sandboxed solutions across the internet<br />VDI – Multi-tenancy is impossible to achieve internally<br />Traditional – Unmitigated disaster  resulting in largest security spend segment<br />©2011 Desktone, Inc. All rights reserved. <br />
    25. 25. A desktop protection problem<br />©2011 Desktone, Inc. All rights reserved. <br />1.7 M records known lost on stolen laptops in 2010<br /><ul><li>http://www.microsoft.com/security/sir/
    26. 26. http://www.datalossdb.org/</li></li></ul><li>Desktop Protection<br />Challenge<br />Defending the desktop against unauthorized access<br />Compartmentalization of duties (service and enterprise)<br />Providing effective desktop backup<br />Real world example<br />Lost & stolen laptops (10K/w)<br />HILF – User identity in Orange County<br />Ability to Deliver<br />DaaS – Separation of roles<br />VDI – Ensuring operations policy & procedures<br />Traditional – Unmitigated disaster  resulting in millions of records lost<br />©2011 Desktone, Inc. All rights reserved. <br />
    27. 27. Desktop Delivery<br />Challenge<br />Eliminating the threat of eavesdropping<br />Ensuring the user can trust the communication from the server<br />Ensuring the server can attest to client actions<br />Real world example<br />Critical vulnerabilities in RDP < 7.0 (eg. MS09-044, MS05-041)<br />CSRF vulnerabilities are exploding<br />Ability to Deliver<br />DaaS – Consider stronger encryption capabilities across the internet<br />VDI – Many respected guides recommend disabling RDP encryption<br />Traditional – Due to the significant variations and types of communication initiated from the desktop, it is difficult to impossible to lock this down securely<br />©2011 Desktone, Inc. All rights reserved. <br />
    28. 28. A User Monitoring Problem<br />©2011 Desktone, Inc. All rights reserved. <br />3M records known stolen by malicious insiders in 2010<br /><ul><li>http://www.datalossdb.org/
    29. 29. http://www.kwtx.com/</li></li></ul><li>Desktop User Assessment<br />Challenge<br />Ensuring user behavior conforms to corporate policy<br />Monitor for malicious user behavior<br />Collecting and evaluating desktop logs across a complex, multi-geo environment<br />Real world example<br />Data loss prevention is a growing problem (eg. PFC Manning)<br />Employee spends all his time Facebook<br />Ability to Deliver<br />DaaS – Central point of deployment allows for centralized visibility<br />VDI – Still need to set up IPS, DLP, reverse proxy, etc<br />Traditional – Difficult to impossible to achieve in a distributed environment<br />©2011 Desktone, Inc. All rights reserved. <br />
    30. 30. ©2009 Desktone, Inc. All rights reserved. <br />Desktone Overview<br />
    31. 31. Who is Desktone<br />©2011 Desktone, Inc. All rights reserved. <br />= Cloud-based Virtual Desktops<br />Built from the start for cloud-hosted desktops as a service (DaaS)<br />Security, end-user performance and customer support is JOB #1<br />Frictionless try and buy experience<br />Optimized, tested & deployed with the worlds largest companies and service providers<br />
    32. 32. VDI vs. Cloud based Desktops<br />DaaS<br />VDI<br />
    33. 33. 1. IT Friendly Solution<br />Easy to manage<br /><ul><li>On demand desktops: add, remove, & modify at will
    34. 34. Centralized (security) management from any device
    35. 35. Visibility into user activity
    36. 36. No data on devices</li></ul>Easy to try<br /><ul><li>Free trial in minutes: (www.desktone.com)
    37. 37. Pilot ease – no infrastructure required</li></ul>©2011 Desktone, Inc. All rights reserved. <br />
    38. 38. 2. Device & Location Independence<br />Embrace next-generation of employees<br /><ul><li>Work and access corporate apps and data from any device: Mac, Ipad, Droid, thin client, laptop, PC (http://www.youtube.com/user/Desktone)
    39. 39. Work from anywhere: home, office, or Starbucks</li></ul>Leverages “Bring Your Own PC” (BYOPC) movement<br />“Instant on” experience<br />©2011 Desktone, Inc. All rights reserved. <br />
    40. 40. 3. Lower Total Cost of Ownership (TCO)<br /><ul><li>No complicated infrastructure to configure and build
    41. 41. Centralized support and management
    42. 42. No expensive management resources required
    43. 43. No hidden costs</li></ul>©2011 Desktone, Inc. All rights reserved. <br />
    44. 44. 4. Low Cash Out = Low Risk<br /><ul><li>No infrastructure investment
    45. 45. Pay for only what you need
    46. 46. OPEX budget consistency</li></ul>©2011 Desktone, Inc. All rights reserved. <br />
    47. 47. 5. 100% Customer Satisfaction<br /><ul><li>Services – rapid deployments
    48. 48. Support – dedicated virtualization experts
    49. 49. Operational Excellence – 4 years of hosted desktop delivery
    50. 50. Training – rich library of self-paced training modules and live knowledge transfer sessions</li></ul>©2011 Desktone, Inc. All rights reserved. <br />
    51. 51. How it Works<br /><ul><li>Access from anywhere</li></ul>Desktone’s Delivers<br />Client Manages<br /><ul><li> High performance network
    52. 52. Secure & Compliant</li></ul>IT Shared Resources<br /><ul><li> Centralized management & reporting
    53. 53. Provisioning on demand</li></ul>Network Connection (VPN)<br /><ul><li> Active Directory
    54. 54. User Data
    55. 55. Storage</li></ul>Remote Display<br />End User Devices<br /><ul><li>Personalized desktops
    56. 56. Bring your own licenses</li></ul>Access Anywhere<br />©2011 Desktone, Inc. All rights reserved. <br />
    57. 57. The Desktone Cloud Consists of two primary interfaces<br />Desktone Enterprise Center<br />Used by desktop admins to manage the Desktone Cloud<br />Desktone Portal<br />Used by end-users for access to resources on the Desktone Cloud<br />
    58. 58. End Point Devices<br />Mobile DevicesiPad “DaaS Mobile Client” avail in the iTunes Store<br />Thin clientsAll leading vendors supported<br />Standard PCsAccess through their preferred web browser or DaaS Client.<br />End-User Access<br />
    59. 59. What the Analysts Say<br />“Enterprises want to take advantage of virtual desktops, but are stymied by cost and complexity. With its attractive price point and easy on-ramp, the Desktone Cloud lowers the barrier to entry. “<br />“This idea of desktops as a service is gaining a lot of interest in the market. IDC believes it is very valid model; the technologies are coming together and I expect it will gain in adoption."<br />“If nobody had influenced you in any way and you were just asked to draw out a sense of a virtualization of services to end users, you would head in this direction.  I have no doubt about it.  It’s very appealing.”<br />
    60. 60. Summary<br />Cloud computing is changing the world of IT<br />The current desktop management market is ripe for change<br />Virtual desktops have a significant security advantage<br /><ul><li>No data on lost and stolen laptops
    61. 61. Centralized desktop management, control and visibility</li></ul>VDI was supposed to solve the problems – but has introduced other issues for most especially cost and complexity<br />©2011 Desktone, Inc. All rights reserved. <br />
    62. 62. Resources<br />Free Desktop Security White Paper http://bit.ly/slidesharedesktopsecuritywp<br />Free Trial: www.desktone.com<br />©2011 Desktone, Inc. All rights reserved. <br />
    63. 63. Questions??<br />Questions / Feedback<br />danny.allan@desktone.com<br />Schedule a Live Demo<br />866-691-5660 or info@desktone.com<br />Desktop in 90 Seconds!<br />Check out our Free Trial of a Cloud Hosted Desktop – in less than 90 seconds you’ll be up and running! http://bit.ly/securedesktopfreetrial<br />©2011 Desktone, Inc. All rights reserved. <br />

    ×