Specifications

ManualsBrandsVMware ManualsComputer equipmentACE

Pocket ACE Guide

 Hardwareindependence.

 Nativeapplicationcompatibility.ApplicationsinstalljustastheydoonaPC.

 FIPS1402‐compliantdataandconfigurationencryption.Dataisfullyencryptedatalltimes.

 Theabilitytosuspend,resume,andsnapshot.

 Robustpolicymanagementincludingaccess,network,anddevicerights.

 AbilitytodeployinstancestoPCsandlaptops,notjustportablemediadrives.

 Robustmanagementtoolsforcreating,packaging,deploying,andmanagingACEinstances.

Examples Use Cases for Pocket ACE

ThefollowingsectionsdescribeexampleusesforPocketACEs.

Providing Secure Remote Access for Users Working Remotely Using Untrusted Hosts

Providingremoteaccessforemployeeswhoworkfromhomeintoday’senterpriseisnotuncommon.Itisalso

notuncommonfortheusertouseapersonallyownedcomputerforaccessingenterpriseresourcesremotely.

Typically,thisishandledonalaptopordesktopPCusingaweb‐basedSSLVPNsolution

oralocallyinstalled

VPNclient.Providingremoteaccessfromuntrustedorunmanagedclientsintroducesinherentrisktothe

enterprise.Unmanagedclientscanbeinfectedbymalwareorspyware.Inaddition,thereisariskoflostdata

ifaremoteuserweretodownloadsensitivedatatoapersonal

computer.Thereisalsotheaddedburdenof

deployingandmanagingthesoftwareneededbyremoteusers.

UsingPocketACE,ITadministratorscandeployatrusted,managed,andmoresecurevirtualdesktopinstance

toremoteusersneedingaccessfromuntrustedclients.ThevirtualdiskofthePocketACEcanbeencrypted

to

minimizetheriskoflostdata.Bysettingspecificnetworkquarantinepolicies,administratorscanstrictly

controltrafficbetweentheuntrustedclientandPocketACEinstance,protectingtheenterprisefromcreating

acompromisedhost.

Increasing the Security and Mobility of Mobile Users

Mobileusersintheenterpriseintroducethehighestriskoflosingsensitivedata.Mobileusersoftenaccessor

carrysensitivedataoutsidetheenterpriseusinglaptopsorothermobiledevices.ThequestionforIT

organizationsisnotif,butwhen,amobileuser’slaptopwillbelostorstolen,leadingto

thelossofsensitiveor

confidentialdata.

UsingPocketACEtodeployadesktopenvironmenttomobileusers,ITadministratorscanreducetheriskof

lostdatawhilealsoincreasingusers’mobility.Adesktopinstancewithanencrypteddiskcanbedeployedto

mobileusers,reducingtheriskofdata

beinglostorstolen.UsingtheACEManagementServer,alostorstolen

PocketACEcanbedisabledremotely.Inaddition,thePocketACEinstancecanbeusedwithanysupported

x86systembymobileusers,furtherincreasingtheirmobility.

Providing Temporary Access to Contract Workers Using Untrusted Hosts

Moreandmoreoften,contractorsorbusinesspartnersareconnectingtotheenterprisenetworkfrom

unknownoruntrustedclients.PocketACEcanbeusedtoprovideastandardized,trusted,andmanaged

environmenttotheseuserswhileenablingsafeconnectivitytoenterpriseresources.Forcontractors,thePocket

ACEinstancecanbeconfigured

tobeavailableonlyduringthelengthofthecontract.Whentheexpiration

timeisreached,thecontractorcannolongerusethePocketACEinstance.

Providing Access to Offshore Outsource Partners

Typically,offshorepartnersmanageandownthedesktopsystemstheyuse.Becausetheseresourcesare

ownedbyanoutsideorganization,theydonotfallunderstandardITpolicy.Insomecases,desktopsystems

arepurchased,imaged,andshippedtoanoffshorepartnerforaccessingtheenterprise.Thisisoftenalengthy



andcostlyprocess.