• Contact us
• Sitemap
• Press
• Investor Relations

•  
• Products & Solutions
  • Policy Compliance

    • NETconsent Compliance Suite
    • NETconsent Policy Manager
    • NETconsent Examiner
    • NETconsent Informer
    • NETconsent Assessor
    • NETconsent Reporter

    Content Security

    • Secured eMail
    • Secured eFile
    • Secured eCollaboration
    • Secured eUSB
    • Simple Encryption Platform

    Secure Access

    • AppGate Security Server Appliance
    • Secure access for iOS® & Android®
    • AppGate Satellites
    • Cryptzone OTP
    • MindTerm

    Endpoint Security

    • Secured eUSB
    • Secured eDevice
    • Secured eDisk
    • SE46 Application Whitelisting
    • AppGate Device Firewall

    Solutions

    • Healthcare
    • Public Service
    • Financial Services
    • Laws & Regulations
• Resources
  • Whitepapers
  • Recorded Webinars
  • Case Studies
• Support
  • Phone Support
  • Purchase/Renew Support your contract
  • Training
  • Technical documentation
• Partners
  • Cryptzone Partner Program
  • Become a Partner
  • Partner Definitions
  • Partner Portal
• About
  • About Overview
  • Board of Directors
  • Contact Us
  • Management Team
  • Investor Relations
• Purchase
  • Worldwide sales
  • Sales Contact Information
  • Online Shop

• Financial Sector
• Healthcare
• Public Service
• Whitepapers
• Product Demos
• Investor Relations

• Policy Compliance
• Content Security
• Secure Access
• Endpoint Security

• Demos & Workshops
• Recorded Webinars
• Whitepapers
• Case Studies
• Solution Guides
• Data Sheets
• SaaS
• By Product

• Phone Support
• Purchase/Renew your support contract
• Training
• Technical Documentation

• Cryptzone Partner Program
• Become a partner
• Partner Definitions
• Find a partner near you
• Partner Portal

• About Us
• Board of Directors
• Management Team
• Contact us
• Investor Relations

• Worldwide sales
• Contact us directly
• Online Shop

• Press Releases
• Press Release Archive
• Awards & Certifications
• Press Contact
• Downloads
• Events

The AppGate technology was originally developed for a leading Swedish defence company to secure internal networks. The solution proved highly effective and became popular with other organisations in government and defence. AppGate uses a different approach to network security. Instead of relying on protecting the network perimeter, security is moved closer to the servers where applications execute and data is stored. The access control model used is based first and foremost on user identity. The underlying principle is that, until a user’s identity is authenticated and their specific access rights have been confirmed, AppGate simply blocks access regardless of whether the user is located inside or outside the network.

The AppGate system provides users with fast, easy access to multiple applications through a single log-on procedure while enforcing security policies and protecting user traffic through encryption and tunneling. The AppGate solution is based on the OpenSolaris operating system allowing customers to choose whether to run AppGate as a virtualized server or purchase an AppGate appliance pre-configured for their business.

The appliance is available in a range of sizes providing support for just tens of users up to more than a hundred thousand concurrent users.

Simplified network configuration

The AppGate solution ties together all the pieces of security technology in one system, replacing point products and reducing the need for internal firewalls. The AppGate Security Server is itself a next generation dynamic firewall and is certified for Common Criteria and FIPS-140-2 for encryption protocols. As a result, network configuration is simpler and therefore easier to manage.

Secured communications

AppGate encrypts all user network traffic as standard providing strong encryption methods including AES128, AES256, Blowfish, 3DES and RC4. An SSH protocol encrypted tunnel is established from the AppGate client to the AppGate server, protecting user data from phishing or man-in-middle attacks. AppGate also provides SSL VPN capability, enabling users to securely access web based services from any web browser.

User authentication

AppGate supports a wide range of 2-factor authentication methods including LDAP, Radius, or SecurID solutions, Nordic Edge one-time passwords, and certificate authentication for PKI deployments. The AppGate system can integrate with multiple authentication systems at the same time. Chained authentication allows two or more authentication methods to be combined to make the login process as streamlined as possible.

Role based access

Rules and roles management tools enable administrators to define which services a user can access depending on criteria such as: how they authenticate, the type of device being used, whether the device is corporate-owned or a shared computer, the user’s location, the time of day etc. Users can be given different roles that define access to applications.

IP Tunneling

Included in the AppGate client is the IP Tunneling Module (IPTM), which makes it possible to tunnel any protocol or application without any limitations. The IP tunnelling driver gives full bi-directional support for all TCP, UDP and ICMP traffic which means that services such as remote desktop (RDP), desktop sharing (VNC), file transfer (FTP), secure IP telephony (RTP) can be deployed and users can have access to all the applications they need.

Granular control of user access

A powerful Boolean rules engine allows access rules to be defined in a very exact way. Access can be controlled down to individual IP addresses and port numbers and it is possible to enforce additional restrictions such as mapping sub-folders from network drives, URL-filtering on web servers and controlled FTP access.

Remote administration, logs and alarms

All servers in an AppGate cluster are administered as one entity. The system can be remotely administered using a powerful GUI-based console application that offers graphical views of the system, its configuration and status. The system includes a log server providing full reports of user access, security related events and system information for auditing. Events can be defined for generating alarms and for initiating appropriate actions.

Chained authentication

Where users need to complete multiple authentication steps, such as Public Key to login to a server and a Password to access applications, the Chained Authentication feature can be used to streamline the process. All the required authentication data is entered in the first dialog and verified so the user can then work smoothly without having to enter a password each time they want to use another application.

Single Sign-on

The AppGate system can offer single sign-on functionality for many applications including web and RDP, and can accept Kerberos tickets from clients.

Clustering for high availability

The AppGate Security Server supports clustering for high availability. User connections are automatically load-balanced across the units according to a pre-determined ration. If one server should fail then all the users will be directed to the remaining good unit(s) automatically as they connect. An added benefit is that a cluster can support multiple / different ISP connections, so if one ISP should fail then the same fail-over process would apply.

Do you want to know more?

To receive more information about The Cryptzone Group’s solutions, please fill in the form below, or click here to request a call.
You will be contacted by one of our sales representatives as soon as possible.