Because not all applications were created with identical technology and every user does not have the same requirements, the ROAM Platform provides a flexible security framework that can address every organization’s need. The ROAM security framework has three tools for providing the secure remote access needed to support an organization’s security policy.

Embedded Security Agent - CLIENTLESS ACCESS

ROAM's Embedded Security Agent — ESA — is a clientless security agent that manages the secure encrypted tunnels between users and applications. Because it is clientless, there are no downloads to manage or configuration issues to consider. The ESA provides access from Windows PCs, Macs, Linux PCs, and SunRay stations. The Embedded Security Agent is tightly integrated into the ROAM desktop and is not subject to pop-up blocking or accidental closure by the user. This means the connection is always secure. There are less trouble calls to an organization’s help desk and the user experience is improved. It is "seamless" for your users and "touchless" for your data.

This dynamic security agent secures communications between a remote user's PC and your internal business systems. Once established, the ESA is embedded in the ROAM Portal desktop and remains open until the user session is ended.

The ESA uses “SSL VPN” (Secure Socket Layer Virtual Private Network) technology to create the encrypted tunnels across the Internet to individual applications or systems. This is the same technology used by the government, the banking industry and other major corporations to secure sensitive data. This clientless approach permits users to travel and use any Internet connected workstation to securely access their sensitive information without fear of interception.

ROAM VPN Service

The ROAM VPN Service Access capability provides powerful tunneling capability over SSL to support users who need secure remote access to complex or badly behaving client/server applications. The VPN Service client is installed and managed on the end user’s PC through ROAM. Access to this functionality is controlled through the ROAM Identity Manager using roles. Multiple VPN Service roles can be defined within an Organization to control access to groups of network resources/subnets.

ROAM VPN Service requires a small client be installed on the end user’s PC. The download can be made available on the ROAM portal as part of the VPN Service role, or can be distributed as required by the IT Administrator.

ROAM VPN Client

The ROAM VPN Client was designed for organizations with users or application requiring full network access that want to restrict access to a single, audited point of access. The ROAM VPN Client provides direct access to the corporate LAN without the use of an Internet browser. ROAM VPN Client provides robust VPN authentication, confidentiality, and integrity without relying on IPSec, which utilizes the WinSock layer, which can often encounter conflicts and errors with other programs. By comparison, ROAM VPN Client is an application, with no administration rights needed to enable remote access.