DOCSLIB.ORG

Citrix Web Conferencing Security

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Citrix Web Conferencing Security White Paper Citrix Web Conferencing Security Citrix provides true end-to-end data security measures that address both passive and active attacks against confidentiality, integrity and availability when using GoToMeeting, GoToWebinar and GoToTraining. gotomeeting.com White Paper Web Conferencing Security Citrix GoToMeeting, GoToWebinar and GoToTraining tools are the most secure web conferencing products available. For each solution, standards-based cryptography with true end-to-end encryption, a high-availability hosted service infrastructure and an intuitive user interface combine to maximize confidentiality, integrity and availability. This document provides a technical and phone conferencing for ease of use and description of the security features built into solution completeness. GoToMeeting, GoToWebinar and GoToTraining. It has been written for technical evaluators and Business needs for secure collaboration security specialists who are responsible for Easy-to-use online business collaboration ensuring the safety of their company’s tools like GoToMeeting, GoToWebinar and network and the privacy and integrity of GoToTraining can help companies increase business communications. productivity by enabling them to communicate and interact more effectively with co-workers, GoToMeeting, GoToWebinar and GoToTraining business partners and customers. But such are web conferencing tools that allow multiple tools vary greatly when it comes to embedded PC and Mac users to interact using screen security features. Moreover, it is essential to sharing, remote keyboard/mouse control, text understand the security implications of chat and other features. GoToMeeting is online collaboration and comply with safe ideal for sales demos and collaborative usage guidelines. online meetings. Built for larger audiences, GoToWebinar is great for marketing Using any web conferencing solution requires presentations and company events. And careful consideration of potential threats and GoToTraining provides features specifically resulting business risks. Business security needs for web-based training, such as online that must typically be addressed when adopting access to tests and materials and a hosted a web conferencing product include: course catalog. • Preventing unauthorized use of the service These products are hosted services, delivered and its features so that only legitimate users via web browsers, downloadable client and invited participants can schedule and par- executables and a network of multicast ticipate in online sessions communication servers operated by Citrix. • Avoiding any compromise of company assets, Sessions are scheduled, convened and including client computers and the private moderated using the Citrix website and client networks to which they are attached software. GoToMeeting, GoToWebinar and GoToTraining automatically integrate with VoIP gotomeeting.com 2 White Paper Web Conferencing Security • Protecting the privacy and integrity of • Internal administrators are Citrix staff confidential communication, including members authorized to manage screen sharing, text messages, email and GoToMeeting, GoToWebinar and GoToTraining voice interaction services and accounts. • Ensuring availability and reliability of the ser- • External administrators are individuals from a vice itself, so that business communications customer site authorized to manage multi- cannot be denied or disrupted user accounts. External administrators can • Integrating seamlessly with other network/ configure account features, authorize orga- computer security measures, so that web con- nizers and access a variety of reporting tools. ferencing services can leverage (not degrade) an organization’s existing safeguards The GoToMeeting, GoToWebinar and GoToTraining user interfaces provide intuitive Our web conferencing tools were developed session controls and status indicators that from the ground up to satisfy these common facilitate productive and safe online sessions. business security needs. By incorporating security features and making them easy to Controls and privileges available to each user administer and use, GoToMeeting, depend on the currently assigned role: GoToWebinar and GoToTraining enable organizer, active presenter or general attendee. effective and safe online business collaboration. Organizer privileges Role-based security features Organizers (or trainers) have the most control in To enable account owners to enforce company a session and the ability to grant and revoke access policies related to service and feature various privileges for the other participants. use, every GoToMeeting, GoToWebinar and GoToTraining user is assigned one of several Specific organizer privileges include: application-defined roles. • The ability to invite attendees, before or dur- • Organizers (or trainers) are authorized to ing the session, so that only authorized schedule meetings, webinars and/or training participants can join a given session sessions. An organizer sets up each session, • The ability to see the complete list of attend- invites other users to participate, initiates and ees and their current roles and privileges, so ends the session and designates the current the organizer remains aware of those present presenter. at all times • Attendees are authorized to participate in ses- • The ability to start and end the session, which sions. Attendees can view the trainer’s or prevents others from disrupting the session presenter’s screen, chat with other attendees accidentally or otherwise or view the attendee list. • The ability to make any attendee the active • Presenters are attendees who are able to presenter, controlling which desktop can share their computer screens with other be viewed at any point in time throughout attendees. Presenters also decide which the session other attendees, if any, are permitted to con- • The ability to disallow the use of chat by one trol the keyboard and mouse of the or more attendees, and permitting sidebar presenters’ computers. discussions only when appropriate gotomeeting.com 3 White Paper Web Conferencing Security • The ability to disconnect attendees • The ability to view the presenter’s screen • The ability to transfer the organizer role to unless the presenter has paused or disabled another attendee (a privilege that cannot be screen sharing revoked) so the session can continue if the • If granted, the ability to remotely control the organizer must leave early presenter’s keyboard and mouse (a privilege that is automatically revoked whenever the Presenter privileges active presenter role is changed) A presenter is the user actively sharing his or her • The ability to use chat to send text messages desktop screen with other attendees. Only one to all other attendees or to one specific attendee at a time within a session may be attendee (features that can be disabled by an granted the active presenter role. Presenters organizer) have the following controls available to them: • The ability to leave a session at any time • The ability to enable, disable or pause screen Basing access rights and privileges on assigned sharing, which can be helpful to avoid display- roles allows flexible sessions that facilitate ing confidential data that might otherwise highly dynamic interaction between attendees, appear on the presenter’s desktop (e.g., while without sacrificing either control or visibility. searching files or folders) Organizers can easily add attendees or • The ability to grant/revoke remote keyboard change the presenter as needed throughout and mouse control to another attendee, the session. Presenters remain in complete which facilitates efficient communication control of their own desktops, and organizers through desktop interaction have everything required to manage the • The ability to make another attendee the pre- session effectively. senter, providing for a flexible, dynamic flow during sessions Account and session authentication features Whenever a presenter is sharing his or her Role-based authorization depends upon the screen with other attendees, an “On Air” ability to correctly identify and authenticate indicator is displayed on the presenter’s each and every user. To ensure that each control panel. To share his or her screen, the organizer, presenter and attendee is in fact who presenter must click the Screen button on the he or she claims to be, GoToMeeting, control panel. These features ensure that GoToWebinar and GoToTraining incorporate presenters always know when desktop sharing robust account and session authentication is active so that desktop screens are never features. shared accidentally. Website account login Attendee privileges To access a user account on the GoToMeeting, Users with the basic attendee role have the GoToWebinar and GoToTraining website, users following privileges: must supply a valid email address and corresponding user account password. To make • The ability to join any session to which they them hard to guess, all passwords must contain have been invited at or after the session’s at least eight characters and include both start time letters and numbers. Too many failed log-in gotomeeting.com 4 White Paper Web Conferencing Security attempts cause the website account to be presented by the downloaded GoToMeeting, temporarily locked to protect against password GoToWebinar or GoToTraining client. guessing. Passwords stored in the service database are encrypted and checked using a Whenever a valid session ID is presented, the cryptographically secured verifier that is
Load more

Recommended publications
  • Modern Tools to Keep Smbs Connected and Productive How to Equip Your Team for Success
    Modern tools to keep SMBs connected and productive How to equip your team for success INHOUSECIO.COM SOLUTIONS BRIEF Teams don’t connect personally and share ideas enough these days, especially as more teams become dispersed and travel budgets remain minimal. This disconnect can significantly affect the quality of work that gets done and the time required to complete it. For too long, rigid collaboration tools have held us back from doing our best work, no matter our location. The phone and email are inefficient and lead to confusion and wasted time, but no one will adopt a more advanced tool if it’s difficult to use. What’s left is a world where it’s hard for remote teammates to effectively collaborate and produce without constant meetings. The modern answer to effective collaboration between dispersed team members is a comprehensive set of tools, tools that are easy to use both on their own and together. Citrix collaboration tools offer solutions to an array of collaboration requirements, including meeting online, sharing and accessing large files and keeping track of projects and people—all while seamlessly working together. Meeting online with GoToMeeting To effectively work together, your team needs to be able to communicate at any given time. Getting everyone into the same conference room is usually expensive or inconvenient, or both, so more and more businesses are taking meetings online. High-definition video conferencing from GoToMeeting allows your team to meet online and talk as if you were in the same room. With just a click or a tap, you get the non-verbal communication and relationship building of in-person meetings without the inconvenience of expensive travel costs or relocating to the office.
    [Show full text]
  • Gototraining User Guide
    GoToTraining User Guide 7414 Hollister Avenue • Goleta CA 93117 http://support.citrixonline.com GoToTraining® User Guide What equipment do I need to use GoToTraining? All you need to start using GoToTraining are the following: • Windows, Mac computer, laptop, smartphone, ipad • Internet connection (broadband is best) • Microphone and speakers (built-in or USB headset) • Most computers have built-in microphones and speakers, but you will get much better audio quality if you use a headset or handset.You can also make calls on your landline or mobile device. GoToTraining Terms Review a list of useful GoToTraining terms • Attendee: An attendee is any person who joins a training session with no pre-specified role. Attendees have very limited privileges. • Attentiveness: Attentiveness of the audience can be seen in the Dashboard pane of the Organizer Control Panel and in the Attendee List. GoToTraining monitors audience attentiveness by checking if the Attendee Viewer and Control Panel are active and on top of other applications. For example, if an attendee clicks on another application (bringing it to the forefront) that attendee would show as inattentive. • Control Panel: The Control Panel gives organizers, panelists and attendees access to various insession training functions. • Course Catalog: The Course Catalog is an online listing of all posted upcoming scheduled training sessions. People can read about training sessions from this list and register for them, or see that they are full. • GoToMeeting/GoToTraining Suite Icon: Organizers on Mac can use the GoToMeeting daisy icon to access both GoToMeeting and GoToTraining features. Double-click the daisy icon on your desktop to access organizer shortcuts.
    [Show full text]
  • Podio Work the Way You Want To
    Work the way you want to Factsheet Podio Work the way you want to Citrix Podio is the collaborative work platform for getting work done with colleagues and clients. Podio helps you to organize projects, exchange ideas, assign tasks and review work all in one customizable place. Collaborate more — and more effectively Podio makes rich back-and-forth communication simple — whether you’re on a local team with hectic schedules, conducting a project task force with members all over the country (or world) or working with clients or partners. The Podio work platform makes it easy to ask a question, share an answer, comment on a file and come to a consensus without drowning in emails. Podio is • Powerful: Manage projects and meetings using workspaces that house tasks, files and activity feeds — from any device. • Simple: Build your own workspace starting with one of the 700 free apps in the complimentary Podio App Market. Key benefits • Customizable: Quickly and easily modify and create apps that fit your workstyle. • Collaborate more thanks to a simple Integrates with GoToMeeting social platform anyone can use. Podio makes it easy to manage GoToMeeting sessions directly from your project • Get rid of long workspaces. You can schedule meetings, invite participants and manage RSVPs email chains and document clutter. and notifications right from Podio. And launching the GoToMeeting session is as • Stay organized by simple as clicking Start in your workspace’s GoToMeeting app — no long meeting storing project files, IDs necessary. You Podio workspace is a great place to post meeting agendas, tasks and reviews in one place.
    [Show full text]
  • Gototraining Fact Sheet
    Teach Online. Learn from Anywhere. Fact Sheet Online Training Made Easy Citrix GoToTraining is the easy online training tool that allows you to deliver interactive online training sessions to anyone, anywhere, at any time. With GoToTraining, you will be able to deliver content to up to 200 trainees quickly and effortlessly, allowing you to expand your training program while saving time and reducing travel costs. Fast, more effective training host your registration page and show you a Training employees and customers can produce list of registrants for upcoming sessions. a significant strain on time and finances. But • RevStream payment processing: Charge for with GoToTraining, it’s easy to move your your courses and manage your registrants’ traditional classroom training online. payments and refunds through our integration with PayPal processing services. • Adopt: GoToTraining is simple to set up and • Automated reminder and follow-up use — no IT support is required. You can start emails: Maintain contact with attendees by Key benefits training online in minutes. having GoToTraining send reminder and • Save time and reduce travel costs. • Reach: GoToTraining eliminates the need for follow-up emails. • Deliver training in hours, not weeks. travel for both trainers and attendees, so • Configurable class size: Set a limit on the • Educate customers to improve distance is no longer a problem. number of people that can register for a customer retention. • Engage: The GoToTraining easy-to-use training session. • Update employees and customers interface and advanced interactive training • Content library: Organize and store reusable in real time. tools keep attendees immersed in your content, such as training materials, tests, • Train remote employees training content and help employees and surveys and recordings.
    [Show full text]
  • Web Conference Security
    White Paper: Security Web conference security We provide data security measures that address both passive and active attacks against confidentiality, integrity and availability when using GoToMeeting, GoToWebinar and GoToTraining. We built GoToMeeting, oG ToWebinar and GoToTraining with security in mind. For each solution, standards-based cryptography, a high-availability hosted service infrastructure and an intuitive user interface combine to maximize confidentiality, integrity and availability. This document provides a technical description of the security features for GoToMeeting, oG ToWebinar and GoToTraining. We have written it for technical evaluators and security specialists who are responsible for ensuring the safety of their company’s network and the privacy and integrity of business communications. GoToMeeting, oG ToWebinar and GoToTraining are web conferencing tools that allow multiple PC, Mac, OS,i Android and Linux users to interact using screen sharing, video, text chat and other features. GoToMeeting is ideal for sales demos and collaborative online meetings. Built for larger audiences, GoToWebinar is great for marketing presentations and company events. And GoToTraining provides features specifically for web- based training, such as online access to tests and materials and a hosted course catalog. These products are hosted services, delivered via web browsers, downloadable client executables and a network of communication servers. Sessions are scheduled, convened and moderated using our website and client software. oG ToMeeting, oG ToWebinar and GoToTraining automatically integrate with VoIP and phone conferencing for ease of use and solution completeness. Business needs Easy-to-use online business collaboration tools like for secure GoToMeeting, GoToWebinar and GoToTraining can help collaboration companies increase productivity by enabling them to gotomeeting.com Web Conferencing Security White Paper communicate and interact more effectively with co-workers, business partners and customers.
    [Show full text]
  • Sharefile Fact Sheet (PDF)
    Secure, cloud-based file sharing Factsheet Securely share, sync and store large files in the cloud Citrix ShareFile is a secure, cloud-based file sharing and storage solution specifically built for business. Send, receive, sync and store files with anyone, anywhere, using any device! Easily retain security and control of all users • Provide users instant access to up-to-date files. • Support mobile work with secure file sharing inside and outside the organization. • Provide IT the control and management required to help ensure security and compliance. • Create advanced reports and usage audits on file-sharing activity. Sync files across all of your devices Key benefits • Sync information across all devices, including mobile phones and tablets. • Increase productivity and share files • Access your data when you need it, wherever you are. anywhere, anytime • Save money and • Integrate with Microsoft Outlook to send secure links through email. time exchanging and organizing documents • Securely track • Collaborate in real time with automatic file updates, so you are always working account activity on the most updated version. with multi-level access controls and notifications Powerful and simple-to-use features Professional When you sign up for a ShareFile account, our graphic design specialists will customize your web portal to seamlessly match your company logo and website at no extra charge. • Create online folders with customizable permissions. • Confirm that clients have received files with custom tracking and alerts. • Access your web portal from a Mac or a PC. sharefile.com Secure, cloud-based file sharing Factsheet 2 Secure and Compliant The functionality, With ShareFile, you can be confident that your data is sent securely.
    [Show full text]
  • Gotomeeting User Guide
    GoToMeeting User Guide Organizing, Conducting, Presenting and Attending Web Meetings Version 6.0 7414 Hollister Avenue • Goleta CA 93117 http://support.citrixonline.com © 2013 Citrix Online, LLC. All rights reserved. GoToMeeting® User Guide Contents Getting Started ........................................................................................................... 1 Welcome .................................................................................................................. 1 Using This Guide ...................................................................................................... 2 Guide Structure ..................................................................................................... 2 Individual and Corporate Plan Users ..................................................................... 2 System Requirements .............................................................................................. 3 What are the system requirements for running GoToMeeting? ............................... 3 Forgot Your Password .............................................................................................. 5 Forgot your password? .......................................................................................... 5 Terms ....................................................................................................................... 6 Product Features ...................................................................................................... 7 GoToMeeting Administrator
    [Show full text]
  • Meet the Modern Meeting Citrix Gotomeeting Is the Easiest and Fastest Solution for Holding Online Meetings with up to 100 Attendees
    Mobile Remote Access Fact Sheet Meet the Modern Meeting Citrix GoToMeeting is the easiest and fastest solution for holding online meetings with up to 100 attendees. Its flat-fee subscription model enables individuals and businesses to use online meetings more often, resulting in increased productivity and a quicker ROI. With GoToMeeting, it’s easy to meet naturally online with integrated audio, HD video conferencing and screen sharing. Key benefits Meet, sell and collaborate more effectively. Features • Significantly reduce travel GoToMeeting enables you to show your Easy-to-use, cus- and operation costs. • Intuitive user interface: • Boost sales by enhancing interactions desktop screen and share your webcam in real tomizable controls enable you to start and with customers and prospects. • Expand your access to partners time. Setup takes seconds, and no training or join meetings in seconds without training. and subject matter experts. maintenance is required, resulting in the • Screen sharing: Show your entire screen, • Receive a faster and greater return on investment. simplest online meeting solution available. multiple monitors or specific applications at • Build relationships with HD any time. group video conferencing. • Sales demos: Have face-to-face interactions • HD video conferencing: Personalize your with remote customers and prospects while meetings with face-to-face video conferenc- you conduct live online demos. ing for up to six participants. • Follow-up meetings: Answer questions, tie • Integrated audio: Communicate through up loose ends and close deals without having built-in VoIP and toll-based calling to reduce to make an extra trip. audio costs. • Collaboration: Stay connected with remote • Toll-free numbers: Optionally add team members by including video conferenc- OpenVoice Integrated to provide toll-free ing in daily project meetings.
    [Show full text]
  • Guidelines for Deploying Citrix BYOD Solutions
    Bring-Your-Own Device Technical White Paper Guidelines for deploying Citrix BYOD solutions citrix.com/byod Bring-Your-Own Device Technical White Paper 2 IT organizations are being challenged as we transition from the PC era to the cloud era because the rules and assumptions have changed. Consumerization is expected to be the single greatest trend impacting IT over the next decade. As executives, employees and contractors bring their own devices into the workplace, managing them is a daunting task for IT. IT meets consumerization Today’s IT systems that were designed and built in the PC era are based on some old assumptions: that people work in a corporate facility, are assigned to a specific workspace, use a corporate-issued PC and attach it to a wired network. These assumptions have led many IT organizations to treat people using their own personal devices, wireless networks, micro-apps and cloud services as exceptions to the status quo. At Citrix®, we believe these PC era exceptions are the new assumptions of the cloud era, where workers are mobile, carry multiple devices and connect over wireless networks. To address consumerization, it has become increasingly important to transform systems designed for the PC era to meet the needs of the cloud era. Key factors include workers’ desire to use consumer device with capabilities that have surpassed corporate issued device standards for work. In addition, the sheer number and diversity of devices that employees and contractors are using are exploding. In response, organizations are adopting bring-your-own-device (BYOD) policies. In this technical white paper we discuss BYOD challenges and present a Citrix solution and architecture that enable people to bring their own devices to work.
    [Show full text]
  • Gotomeeting Online Meetings Made Easy®
    FACT SHEET GoToMeeting GoToMeeting Online Meetings Made Easy® Citrix® GoToMeeting® is the easiest, fastest and most secure solution for Key benefits conducting and attending small-group online meetings with up to 15 • Increase productivity attendees. Its innovative, All You Can Meet® flat-fee subscription model with instant collaboration. enables individuals and businesses to use online meetings more often, resulting in increased productivity and a quicker ROI. With GoToMeeting, it’s • Significantly reduce travel and easy to meet naturally online with integrated audio, HD video conferencing operational costs. and screen sharing. • Boost sales by enhancing interactions with customers and prospects. Meet, sell and collaborate more effectively Patented technology enables you to show any application running on your • Expand your access to desktop and share your webcam in real time. Setup takes seconds and no partners and subject training or maintenance is required, resulting in the simplest online meeting matter experts. solution available. • Receive a faster and greater return on investment. • Sales Demos: Have face-to-face interactions with remote customers and prospects while you conduct live online demos. • Build relationships with HD group video conferencing. • Follow-up Meetings: Answer questions, tie up loose ends and close deals without having to make an extra trip. • Collaboration: Stay connected with remote team members by including video in daily project meetings. Make secure online connections GoToMeeting is the most secure online meeting product available. Industry-standard SSL and U.S. government-standard 128-bit AES encryption ensure that your login information and meeting sessions are always secure. An optional password for meeting entry further enhances meeting security.
    [Show full text]
  • Gotomeeting®
    GoToMeeting® User Guide 7414 Hollister Avenue • Goleta CA 93117 http://support.citrixonline.com © 2013 Citrix Online, LLC. All rights reserved. GoToMeeting User Guide Contents Get Started with Your Account ...................................................................................... 1 Log In ............................................................................................................................ 1 Download GoToMeeting ............................................................................................... 2 Automatic Upgrades (Windows only) ............................................................................ 3 System Requirements ................................................................................................... 4 Forgot Your Password .................................................................................................. 6 Can’t Access Your Account ........................................................................................... 6 Change Your Email Address and Password ................................................................. 7 Edit Your Personal Info ................................................................................................. 8 Update Your Billing Info ................................................................................................ 9 Set Your Default Language ......................................................................................... 10 Change Your Plan ......................................................................................................
    [Show full text]
  • Citrix Gotoassist Corporate Security White Paper
    WHITE PAPER GoToAssist Citrix GoToAssist Corporate Security White Paper GoToAssist® Corporate provides robust end-to-end data security measures that address both passive and active attacks against confidentiality, integrity and availability. www.gotoassist.com WHITE PAPER GoToAssist Scope and audience This guide is for Citrix® GoToAssist® Corporate customers and other stakeholders that need to understand how GoToAssist impacts information security risk and compliance in their environment. Introduction GoToAssist Corporate is a hosted service that provides a way to deliver remote support to PC and Mac® computers. GoToAssist Corporate allows a user to request support from a support representative and then allows that representa- tive to view and optionally control the end user’s computer remotely. This docu- ment focuses on the information security features of GoToAssist Corporate. The reader is assumed to have a basic understanding of the product and its features. Additional materials on GoToAssist Corporate may be found online at www.gotoassist.com or by contacting a Citrix Online representative. GoToAssist Corporate service delivery architecture The diagram below provides a schematic overview of all major GoToAssist Corporate service delivery components and communication paths. Citrix Online Hosted Infrastructure Service Rep’s PC Manager’s PC Customer’s PC HelpAlert Replay Viewer Passphrase Changer ChatLink Browser Endpoint Gateway GoToAssist Web Site GoToAssist Service Broker Multicast Communication Server 2 WHITE PAPER GoToAssist Definitions HelpAlert Win32 executable that resides on the service representative’s computer and enables the representative to receive and reply to incoming customer queries. Chat Endpoint application that facilitates text-based communication between a customer and a service representative.
    [Show full text]