Secure Global Desktop Administration Guide > Security > Security and Secure Global Desktop

Security and Secure Global Desktop

Secure Global Desktop is only one of many components on your network. The information here is related to Secure Global Desktop, and can only help raise security levels as part of an ongoing security strategy.

Network connections

Secure Global Desktop connects client devices to application servers, acting as a go-between. Also, Secure Global Desktop servers can join together as an array. This means there are three types of connection involved:

In a Secure Global Desktop installation without the Sun Secure Global Desktop Security Pack, all connections are unencrypted (in the clear). This is as secure as using the telnet program to communicate between two UNIX hosts.

You can raise security levels in these ways:

• Improving security between client devices and Secure Global Desktop servers
• Improving security between Secure Global Desktop servers and application servers
• Using secure connections between the Secure Global Desktop servers in an array
• Configuring Secure Global Desktop to work with a firewall

Passwords

In a Secure Global Desktop installation without the Sun Secure Global Desktop Security Pack, passwords are encoded between the client device and the Secure Global Desktop server to deter casual eavesdroppers. With the Sun Secure Global Desktop Security Pack, this information is always encrypted.

Secure Global Desktop encrypts all passwords stored in the password cache.

By default, the encryption key used for the password cache never changes. You can force the key to change whenever Secure Global Desktop servers start by checking the Generate New Encryption Key On Restart box on the Security panel of Array Manager.

Copyright © 1997-2005 Sun Microsystems, Inc. All rights reserved.