Can I Evade ScanSafe Anywhere+ ?

scansafe anywhere plusScanSafe just launched Anywhere+, a very cool web security service which is intended to provide web content security for roaming users.

Well, securing the laptops used by sales or marketing staff  *outside of the company’s premises* has always been a pain in the behind :) and I’m afraid this will not change overnight.

However, I find ScanSafe’s approach interesting and it might just work this time… but how does it work? Is it a proxy setting? Is it a VPN connection? Is it a browser plugin? I don’t know so I had to find out. I applied for a trial account and I hope I will get to the bottom of this issue soon.

Sure, the marketing presentation looks nice:

And so does the explanatory text:

  • Authenticates and directs your external client Web traffic to our scanning infrastructure. 
  • Numerous datacenters are located all over the world from Sydney to San Francisco ensuring that your employees are never too far from our in-the-cloud scanning services.
  • SSL-encryption of all Web traffic flowing to us improves security over public networks

So, I’m guessing that Anywhere+ alters the browser itself and no matter how you get on Internet, the web requests will be redirected to ScanSafe’s data centers where the response is checked for web malware.

This raises a few questions on the adoption of this technology:

  • User’s online privacy could be questioned – Lots of authentication pages don’t use SSL
  • If this technology is browser dependant (my money is on Internet Explorer), what would prevent a smart a$$ user to use a different browser such as portable apps

I wish ScanSafe Anywhere+ best of luck because the service is much needed and it’s distributed architecture looks promising.  And guys, please don’t forget my application for a trial version :)

UPDATE:

I got an email from Spencer Parker, Director of Product Management at ScanSafe and here are some clarifications:

1. The software works at the protocol level, not application level. This means it works with any application that uses the HTTP or HTTPS protocols. This means if users go ahead and install another browser to bypass corporate proxy settings (which a lot do!) then the Anywhere+ driver still redirects the protocols correctly to the closest ScanSafe scanning tower.

2. We use an SSL tunnel to get all HTTP and HTTPS traffic to the scanning tower. It does this to add an extra level of security to the application (stop people sniffing your traffic at wireless hotspots etc) and for other reasons as well.

I’m still waiting for my trial account :)

Share This

If you enjoyed this post, make sure you subscribe to my RSS feed!



Thank you for reading this post. You can now Read Comments (3) or Leave A Trackback.

Post Info

This entry was posted on Tuesday, January 29th, 2008 and is filed under Firewalls, Web Applications.

You can follow any responses to this entry through the Comments Feed. You can Leave A Comment, or A Trackback.



Previous Post: Googlehacks and Anti-Googlehacks »
Next Post: OpenDNS Offers Free Web Content Filtering »

Read More

Related Reading:

Latest Posts:

3 Responses to “Can I Evade ScanSafe Anywhere+ ?

  • 1
    James
    March 10th, 2008 05:15

    Nice little post. I was wondering if you got any further with the trial??

  • 2
    Ashley
    May 30th, 2008 01:28

    :shock: Awesome, but I am araid not.

    ScanCenter provides a unique visual dashboard that simplifies the process of configuring and monitoring policy.

  • 3
    Simon
    July 10th, 2008 07:53

    I doubt you’ll get a trial account as this is focused on mid-tier and enterprise users.
    You might want to try a security partner.



Leave a Reply

Note: Any comments are permitted only because the site owner is letting you post, and any comments will be removed for any reason at the absolute discretion of the site owner.

Close
E-mail It