SSH

Securing Application Traffic to Comply with Regulations

Customer Challenge:

"We use various remote access methods to administer tens of thousands of point-of-sales systems at our stores. The methods include FTP, RDP, Telnet and VNC. Our environment consists of mostly two types of connections. One type goes through our gateway software to our store registers and computers. The other type of connection goes from our store registers to our application server and is triggered by the application server."

"Our goal is to secure all the connections and file or data transfers in order to pass Sarbannes-Oxley Act (SOX) audits and to comply with Payment Card Industry Data Security Standard (PCI-DSS) ."

Tectia Solution:

The connections from store registers to application servers originally used unsecured FTP connections. FTP-to-SFTP conversion with Tectia ConnectSecure was implemented to secure the connections on the fly.

The gateway connections were using Telnet, VNC, FTP and Terminal services. From several options available from Tectia, the best solution was to use application tunneling with Tectia ConnnectSecure to secure the gateway software.

Tectia ConnectSecure securing application traffic

Figure 2.2. Tectia ConnectSecure securing application traffic

Customer Benefits: