MokaFive, AVG push the secure corporate perimeter to personal devices

Last week, we announced a joint solution with AVG to add one more layer of security to MokaFive which allows distributed virtual desktops to be quickly deployed to and safely run from any machine - corporate or personal. This solution extends MokaFive’s capability of running encrypted virtual desktop containers on the endpoint by further securing them from key-logging and screen-scraping attacks from the host machine with the AVG security scanning capability.

While there are a number of drivers for this integration, the key driver is securing the increasing number of personal devices that are constantly accessing sensitive corporate data. Whether organizations like it or not, they have to support ubiquitous access to stay relevant. Current solutions fall seriously short. Let’s start with VPN. Trying to secure access from personal devices using VPN is futile, since all it does is punch a hole from a dirty container into a clean datacenter. Next let’s look at server based desktops (VDI) and apps or terminal services. In each of these solutions, the data is sitting in a nicely protected container in the datacenter. For added security, let’s assume that there are military guards outside the datacenter. If all this secure data is ultimately being accessed by a browser from a dirty personal machine, then it can be screen scraped. Might as well toss out all the protection. The third approach is to distribute bootable USBs or CDs with a browser. This approach is secure, but cumbersome for the user, and more importantly, the image cannot be managed or updated.

As I have mentioned before, security cannot be talked about in absolutes. But if a company wants to enable access of corporate data from personal machines,; the best solution seems to be to have a secure, managed container provisioned to the personal machine. This is exactly what we are doing with the combined AVG – MokaFive solution. The corporate environment is captured and encapsulated in a virtual desktop (called LivePC in MokaFive parlance) which is then deployed to the personal endpoint. The encapsulation has built-in AV scanning that provides continuous protection from keyloggers and screenscrapers that might be present on the host machine. The scanning is running continuously during VM operation to ensure constant protection. All access to the corporate data is made available only through the VM container. Now, the user has the flexibility to use both corporate and personal environments on their machine, and the corporation has complete assurance that all the data is secured.

With this solution, enterprises can now finally extend the secure corporate perimeter to personal machines. Check out the press release.

Purnima Padmanabhan, VP of Products & Marketing