Rechercher
Contactez-nous Suivez-nous sur Twitter En francais English Language
 

Freely subscribe to our NEWSLETTER

Newsletter FR

Newsletter EN

Vulnérabilités

Unsubscribe

David Dupré and Daniel Fages, CommonIT: A web browser “secure by design”

January 2009 by Marc Jacob

If the web has a weak link, it’s the browser. The founders of commonIT reckon they have the answer. With their “Virtual Browser” solution, the browser runs on a secure server on the DMZ with a simple client managing display and user interactivity on the end point device. Based in Lyon, France, commonIT was founded in January 2009 by four ex-colleagues from Arkoon Network Security, the French UTM specialists. For David Dupré and Daniel Fages, Virtual Browser delivers effective protection for users and the enterprise against web-based threats, because the Virtual Browser solution is “secure by design”.

GS Mag: Let’s start with a quick overview of your enterprise

David Dupré and Daniel Fages: We’ve just completed the business registration formalities for commonIT with two other colleagues, Albino Pili and Mathieu Lafon, who we worked with at Arkoon. It all started with us looking at how web vulnerabilities were increasing at the same rate as internet usage. At the same time, enterprises are becoming increasingly dependent on web services as the easiest way for mobile users to connect to enterprise resources. This led us to develop the Virtual Browser concept, removing the browser from the end point device (PC, laptop, PDA or other) were it’s most vulnerable and running it remotely in a secure environment. It’s a completely new approach to browser architecture which guarantees security and mobility, and we’ve applied for a patent on the concept.

GS Mag: So tell exactly what your solution does

David Dupré and Daniel Fages: With Virtual Browser, the core browser functionality runs on an isolated server in a secure environment such as the enterprise DMZ or “in the cloud” as a hosted service. Only presentation elements (graphics, audio, keyboard/mouse, printing) are executed locally on the user’s device. This architecture guarantees that the end-point device is protected against any type of web-based threat as no web (browser) code executes locally. It’s all running on the secure server. Going one step further, Virtual Browser can isolate different browsing sessions according to security policies. This protects sensitive business applications such as CRM, financials or groupware from cross-site or drive-by attacks when users are simultaneously visiting potentially risky “non-business” sites. A virtual machine is mounted for each connection, meaning it’s completely isolated from other browsing sessions.

One of the key end-user benefits worth noting is that the user’s browsing environment (bookmarks, cookies, skins, options and so on) is hosted on the server, so that no matter where the user connects from, even with multiple devices (irrespective of format: PC, PDA, etc), they always find their own personal configuration. No need to work out how to transfer bookmarks or saved (and forgotten) site registrations!

Another use for the Virtual Browser solution is to reinforce the management and security of partner and customer access to business applications. With Virtual Browser deployed as the client, there’s no direct IP connection between the user’s PC and the application server. Even if the remote user’s PC is infected the enterprise is protected, and more intrusive technologies such as end-point auditing or integrity checking are unnecessary.

The Virtual Browser client is a genuinely “thin” client; it occupies just 12MB of RAM, and around 5MB of disk space is all that’s needed for the installation. It can easily be run off a USB memory stick.

GS Mag: What’s your go-to-market strategy?

David Dupré and Daniel Fages: We’ll be working through a network of distributors and integrators. We’ve already developed contacts with a number of businesses who are interested in selling the solution, and some of them are interested in developing their own hosted services based on the Virtual Browser solution.

The target market is, on the one hand, large enterprises who are already facing the issues of mobility and security, and web security more generally; and on the other hand, SMBs for whom Virtual Browser can reduce the cost and complexity of the end-user’s PC, as 95% of security threats are now web-based and these are eliminated by a Virtual Browser deployment. The savings in security software licensing and administration can be significant.

Our sales model is “full SaaS”. The client software will be downloadable free of charge from our web site. The corresponding enterprise server solution will be priced on a per-seat basis. There’ll also be a product specifically adapted to “extranet” (partner/customer access) deployments, and the target markets for this solution are banking and insurance as well as other large businesses developing transactional tools for partners and customers.

GS Mag: What’s the feedback from the market?

David Dupré and Daniel Fages: Two potential customers are already testing the solution, and more will be starting tests in January and February. Feedback has been very positive, and we’re feeling confident that we’ll see the sales developing as we projected in our business plan.

GS Mag : What’s in the pipeline for the next few months?

David Dupré and Daniel Fages: There’s a number of projects in the pipeline. In terms of product development, we’re working on client solutions for smartphones, with a focus on Windows Mobile and the iPhone.

From the corporate point of view, we’re in discussion with potential investors to raise funds to accelerate the development of commonIT. We have contacts with investors in France and internationally who are interested in the concept. We have a strong team and a unique technology that meets market needs today and is ready for the future.

On the marketing front we’re entering the product for the Innovation Prize of the European Security and Information Systems Congress. We’ll also be developing a network of value-added partnerships, initially in Switzerland and Italy before moving on to other European markets.

And finally we expect to be recruiting five employees in product marketing, R&D, technical support and sales before the end of the year.


Traduction par Victor O’Neill


See previous articles

    

See next articles


Your podcast Here

New, you can have your Podcast here. Contact us for more information ask:
Marc Brami
Phone: +33 1 40 92 05 55
Mail: ipsimp@free.fr

All new podcasts