Working Remotely? Ensure Zero-Trust Security with Digital Certificate Authentication
11.16.2020 | Soliton Blog
Remote work has become the new normal, and managers must consider how to achieve zero-trust security while allowing for remote access. The zero-trust model requires authentication for all users, even those within the organization’s network, to ensure secure remote access.
Device authentication is a secure tool to manage remote access, since only authorized devices can connect to the network. Digital certificates support multiple operating systems, and are rarely compromised due to their high security. Many companies and institutions adopt digital certificates for wireless LAN authentication, and IT administrators distribute them to office devices. However, in order to achieve zero-trust, certificates need to be distributed to both personal and remote-work devices.
Digital certificates can be distributed in P12 file format with a private key, but they are not recommended for direct distribution to users because this file can be easily copied.
In order to prevent their unauthorized duplication, digital certificates should be distributed to authorized devices under the following security protocol:
- A public and private key pair is created in the device when requesting registration.
- Only the public key requests a signature to the Certificate Authority (CA).
- The private key is never removed from the device.
Soliton Systems’ SecureDesktop is a robust and versatile solution that operates under this protocol to ensure the highest level of security for remote access. By using digital certificates at each end, only authorized devices and users are allowed access to the organization’s network.