Remote Management
The SMP Digital Support team suggests using LogMeIn (LMI) for remote management of the Swank Digital Media Player. This service provides a secure session for remote management, installation assistance and ongoing support.
LMI Security Whitepaper can be located here:
LMI HIPAA compliance information can be located here:
LogMeIn sessions
Once installed, the Swank DMP will maintain a constant SSL-secured connection with one of the LogMeIn gateway servers in a secure datacenter. This link is initiated by the host agent on the Swank DMP Server and firewalls treat it as an outgoing connection, like secure web-browsing traffic.
Remote Management sessions are established through the SMP Digital Support portal. SMP support representatives are required to authenticate to this portal prior to accessing your server. SMP support can monitor the status of each server as well as exchange data through the host agent via the secure gateway. The traffic between the client session and the host agent is encrypted over SSL. The client session with a host agent will also need to authenticate itself to the host prior to any data exchange or remote session. Once the host has verified the client's identity and authorized the client to access the computer, the actual remote access session begins.
LogMeIn Data Encryption
The SSL/TLS standard defines a wide range of cipher suites, such as RC4 and 3DES, and some implementations offer more advanced suites that include AES as well. RC4 operates on 128-bit keys, 3DES uses 168 bit keys. AES can utilize 128 or 256-bit keys. The client and the host agree on the strongest cipher possible. The client sends the host a list of ciphers it can use and the host chooses the one it prefers from this list.
The SSL/TLS standard does not define how the host should choose the final cipher. In LogMeIn, the host simply selects the strongest available cipher suite that the client has offered.
This method allows both the client and the host to decline the use of specific data-encryption algorithms without needing to update both components. A more detailed overview of LogMeIn security is available upon request.
Comments
0 comments
Please sign in to leave a comment.