As discussed above, the network security paradigm is flawed not only within the DMZ network segments. Firewalls themselves which were traditionally thought of as impenetrable “gateways into the organization”, are now known to be vulnerable to attacks such as Shellshock and others.
It is clear then, that a paradigm change is needed in order to overcome the challenges of today’s network security practices and effectively combat cyber-attacks.
Safe-T’s RSAccess Secure Data Access is disruptive and breakthrough secure reverse-access solution that is designed to overcome the challenges of today’s DMZ networks and network segmentation, prevent criminal application access, application hacking, and protect classified networks within the enterprise infrastructure.
With RSAccess organizations start their journey to complete elimination of the DMZ, close incoming ports in the firewall, and eliminate sensitive data and application servers from the DMZ while gaining immediate costs savings.
Safe-T’s RSAccess is a dual node patented technology, which removes the need to open any ports within a firewall, while allowing secured network access between networks (through the firewall).
RSAccess Secure Data Access solution is a two tier deployment:
- External RSAccess Node – installed in the DMZ / external / non-secured segment
- Internal RSAccess Node – installed in the internal / secured segment
The role of the external RSAccess node is to act as a front-end to all services published within the DMZ. It operates without the need to open any ports within the internal firewall and ensures that only legitimate session data can pass through into the LAN.
The role of the internal RSAccess node it to pull the session data into the LAN from the external RSAccess node, scan it using various application level security techniques, and then pass it to the destination application server.