Question

What are the additional elements required of a network architecture if the enclave is to support remote access through the public Internet?

True or false: A thin client is a PC or laptop without a hard drive or storage space.

What are the five elements of a Remote Access Security Readiness Review

Answer 1

(1) The additional elements required of a network architecture if the enclave is to support remote access through the public internet are: -

a) - Policy management

b) - Remote access server

c) - VPN Gateway

(2) TRUE, A thin client is a PC or laptop without a hard drive or storage space.

(3)  The five elements of a Remote Access Security Readiness Review are -

1) Access a secure browser(HTTPS) portal application running on the firewalls. This requires an additional authentication.

2) Use a secure socket layer(SSL)14 VPN session between the remote client and the plant DMZ firewall and restrict application usage to a remote terminal session15 over HTTPS.

3) Utilise intrusion detection and prevention system on the firewall to inspect traffic to and from the remote access server for attacks and threats, and appropriately stop them.

4) Allow the remote user to execute, via the terminal session, a selected set of control and automation applications that reside on the remote access server. Application level authentication is required.

5) Implement application security that restricts user from the remote access server to a limited set of application functions(such as read only, non-line offsite functions).