Understanding Secure
Remote Browsing

To Click or Not to Click

Are you brave enough to click this link?

It might provide valuable information. You’ll only know if you click on it.

But it could lead to a site run by a malicious attacker, designed to compromise your machine.

It’s a paradox. How can you click it and not click it at the same time?

What is Remote Browsing?

With secure remote browsing, your browser runs on a completely separate and isolated computer. If the browser gets compromised, the attacker has no access to your device or to any other sensitive systems or data.

That way, you can interact with potentially dangerous internet content without putting your own device at risk: websites, downloaded files, and even email attachments.

The vision is this: click on any link. Don’t worry.

But secure remote browsing only works in practice if you can deliver a good user experience that’s affordable at scale and doesn’t compromise on the security model. That’s really hard. That’s why we developed Garrison SAVI®.

Scroll down for more, or learn about Garrison SAVI®

Beyond Just Browsing

Access to websites is only the beginning for secure remote browsing.

With secure remote browsing, documents can be downloaded from the Internet and viewed remotely. They can even be stored in the cloud for later retrieval, all without touching your sensitive endpoint. Of course, when you decide you really need to work with them natively, they can be brought across onto your native desktop – allowing you to use the full range of content security techniques to mitigate the risks that introduces.

And browsing workflow can be enhanced using Garrison’s Silicon Assured Content Sanitisation technology to provide seamless copy-and-paste and printing.

Business Benefits

The immediate benefits of secure remote browsing are clear: click on any link without worrying about what might lie behind it.

Eliminate a whole class of threat, and reduce the number of breaches: secure your systems and your data better, without sacrificing connectivity. In fact, in many cases organisations may be able to extend connectivity to sites that are currently blocked for security reasons.

But done right, the benefits of secure remote browsing extend further:

Reduce the ability for malicious or careless insiders to leak information to the web.
Users of secure remote browsing need to be able to click and type, but they don’t need to be able to upload sensitive information. Secure remote browsing allows opportunities for data leakage to be restricted and monitored.

Reduce the impact of malware received via email, USB stick, or other channel.
In many cases, malware that does make it through your defences expects to be able to communicate with the Internet to receive instructions and to exfiltrate data. With secure remote browsing, you can close off the channel to the majority of the Internet, neutralising a large proportion of malware.

Reduce spend on other controls.
If you are confident your secure remote browsing solution is truly secure. One key area is the Security Operations Centre: reducing the volume of alerts from no-longer-risky web traffic allows SOC analysts to focus their time and attention on alerts that could cause real business impact.

Key Use Cases

In the long run, we expect secure remote browsing to transform web access and security across the organisation. By moving to a website whitelist model, enterprises can allow native browser access only to well-known, trusted cloud services, while using secure remote browsing for everything else. But in the short term, a number of key use cases are driving immediate take-up. Garrison is solving one or more of these problems today for large enterprise customers across sectors that include financial services, media, telco, law and government:

  • Access to uncategorised sites.
    Increasing numbers of organisations are blocking access to sites which have not yet been categorised by their proxy provider. But in reality, users may on occasion need to gain access to these sites. Secure remote browsing provides the answer
  • High impact user groups.
    Some user groups within the organisation have direct access to highly sensitive systems and data but require broad access to the web. Secure remote browsing can provide the answer for systems administrators, payments processing teams, call centre staff and even senior executives
  • Risk and security groups.
    Teams such as Fraud or Security have jobs that inherently require access to dangerous parts of the internet. A similar challenge faces HR teams who need to review large numbers of CVs (resumés) from the Internet. Secure remote browsing can provide a seamless experience for these dangerous sites and documents that integrates with users’ workflows.

Learn about our unique technology