Logical Computer Selections has been proudly serving the New York Metropolitan and New Jersey area with cost-effective, IT solutions for 18 years and counting! And now, our excellent, remotely managed services are also available.

 

Security Assurance

Is Remote Monitoring with LCS Secure?

LCS covers all the aspects of security to ensure protection of business privacy and data:

  • Ports, Firewalls and Data Safety
  • NAT
  • The Management Node and IP
  • Access Control
  • Authentication Mechanism
  • Access Restrictions
  • Auditing
  • Encrypted Communication

1. Ports, Firewalls and Data Safety - We utilize secure SSH for communication, which operates on port 22. Most firewalls keep port 22 open, at least for outbound communication.

2. NAT - Our software works transparently through the NAT and does not require any NAT reconfiguration.

3. The Management Node and IP - The Management Node is placed behind the firewall/NAT and does not need fixed public IP to operate. It connects to the Directory and Authentication Server which maintains its own addressing method. All communication between the LOGICAL technician and the Management Node on the client LAN occurs via the Directory and Authentication Server. This methodology provides excellent security as the LOGICAL Management node is not accessible directly without going through the Directory and Authentication Server.

4. Access Control - The Directory and Authentication Server maintains a fine-grained Access Control List of the rights of LOGICAL and its technicians. This prevents any technician from gaining access to Management Nodes or networks which he is not authorized to manage. All such rules are defined centrally and are imported to the machine of the LOGICAL technician when he logs into the Directory and Authentication Server.

5. Authentication Mechanism - The Directory and Authentication Server uses a username/password as well as certificates for authentication purposes.

6. Access Restrictions - Our architecture only allows the LOGICAL technician to access the Management Node with minimal rights. Under these rights he can only execute and work with the software loaded on the Management Node but cannot access other network services like File/print Sharing, Network Neighborhood etc.

7. Auditing - Our platform is provided with integrated audit reporting. Clients can get details including technicians logged on with relevant time stamp, the module to which they logged on, and the activity carried out by them. The audit report can detail either MN activity as a whole, or specific activity executed by a technician.

8. Encrypted Communication - Our software supports 3DES, AES, BlowFish, TwoFish using either a 128-bit or a 256-bit key.