Call a Specialist Today! 800-886-5369

VPN Scenarios
Direct Link-Up for Any Scenario

Mobilising business processes is a socio-economic development, which affects all areas of business activities: Data and information needs to be accessible and exchangeable wherever, whenever. That means: Ideally, any individual with the required access rights should be able to access any application or resource within the organisation’s network with any device, anywhere, anytime. NCP offers workable solutions. We ensure that your teleworkers in their home offices have all the required access to anything they need – just as if they were sitting in the office next door. In addition, the transfer of inventory data (e.g. stock), operational data and/or control data to or from a centralised data network can be realised by means of our secure VPN solutions.

And no matter what application or what scenario - NCP ensures safe and secure data transfer between the remote PC / PC based system and the central VPN gateway. And that with utmost reliability, performance and economy.

The following scenarios should serve as examples only, in order to demonstrate the various facets of our comprehensive NCP VPN solution:

Mobile Computing:

Are your people on the road? They can take the office with them.

VPN solutions from NCP offer your mobile workers secure and easy access to the organization’s network via any and all public wireless networks, WiFis and the Internet. Managers, sales and technical field executives have easy access to centralized data, applications, and resources – wherever and whenever. It doesn't matter if he or she is sitting in the car, on the train, at the airport, at a trade show, in a hotel, onsite at a client’s office, in one of your branch offices or simply at an Internet café. The transmission medium used in each instance depends on the required bandwidth and availability.

  • Alternative end devices: Notebook, Laptop, PDA, MDA, Smartphone
  • Operating systems: Windows 8/7, Windows Vista, Windows XP (all 32-/64-Bit), Windows Mobile (5.0/6.x), Android, Linux, Mac OS X
  • Transfer media: GSM, HSCSD, GPRS, HSDPA, UMTS, LTE, WiFi (Company grounds or Hotspot), Internet
  • VPN technology: IPsec, when utilizing proprietary systems, and SSL when utilizing communication media via external machines, e.g. onsite at the client’s facility.

Secure mobile computing with IPsec VPN/SSL VPN technology by NCP
Secure mobile computing with IPsec VPN/SSL VPN technology by NCP

WWhen there is no requirement to use a VPN client, or where IPsec communication can not be established via LAN because of firewall settings, SSL VPN technology can be used. For example: Integration of affiliates or sporadic teleworkers (at any computer), alternative access to the organization’s network (e.g. onsite at a client’s facility, where company policy does not provide for IPsec).

Specific requirements overview for a hybrid VPN solution:

  • End-to-site security between teleworkers and the central VPN gateway
  • Autonomy in regards to WiFi component manufacturer (compatibility and security)
  • Support of IPsec and SSL VPN technologies
  • Strong authentication parameters via certificate also for PDAs, MDAs, and SmartPhones
  • No interruption, e.g. no aborted sessions due to ‘dead spots’ or while switching between access points within a WiFi
  • Automatic media recognition
  • VPN Client Monitor integrated displays of field strength and provider, while using certain Mobile Connect cards in laptops or notebooks
  • Automatic login for secure hotspots
  • Protection against attacks from other WiFi participants
  • Integrated, dynamic personal firewall
  • Always on (for email push services) on the NCP Secure CE client

Home Office:

Working from home today, back to the office tomorrow? No problem!

If your executives alternate between a home and corporate office, secure remote access to the organisation’s, or branch office network via public dial-in connections, WiFi and the Internet is of critical importance. Solutions are available for either a mobile PC (laptop and docking station) or two end devices (desktop and laptop). Since teleworkers are usually permanently online, matching transfer media need to be selected. Dial-in can be direct via the company telephone number or indirect, via Internet (provider telephone number + IP address of target system).

  • Alternative end devices: Desktop and/or notebook/laptop (with docking station where necessary)
  • Operating systems: Windows 8/7, Windows Vista, Windows XP (all 32-/64-Bit), Linux, Mac OS X
  • Transfer media: Modem, ISDN, WiFi, DSL, Internet
  • VPN technology: IPsec

Secure computing at the Home office
Secure computing at the Home office

Specific requirements overview for the VPN solution:

  • End-to-site security between teleworkers’ home offices and the central VPN gateway
  • Strong authentication via certificate or OTP tokens (one-time password)
  • Interruptions, but no aborted sessions due to ‘dead spots’ or while switching between access points within a private WiFi
  • Automatic media recognition
  • Integrated, dynamic personal firewall

Branch Office:

‘Outside Offices’ become Integrated Branches

In order to facilitate access to important data for all your branch offices and subsidiaries, NCP offers VPN solutions for the communication between remote PC networks and the central data network. The transfer medium used will depend on the volume of data and communication behavior.

  • Alternative end devices: Desktop, notebook or laptop (with docking station, where required)
  • Operating systems: Windows 8/7, Windows Vista, Windows XP (all 32-/64-Bit), Linux
  • Transfer media: ISDN, DSL, Internet
  • VPN technology: IPsec

Secure VPN Solutions for Branch Office Integration
Secure VPN Solutions for Branch Office Integration

1. There are several options for the integration of branch offices into a VPN:

  • Branch office integration is achieved through two VPN gateways into the central data network, whereby all PCs at the branch office will access the central network of the organisation via a common VPN gateway. Alternative deployment options for the VPN gateway software. In accordance with respective requirements:
  • IP router exists: Installation of the NCP Secure Enterprise Servers on the LAN as a dedicated computer or File server integrated
  • No IP router: Deployment of the NCP Secure Enterprise Servers with WAN connectivity, as a dedicated computer, or file server integrated, which will have to be fitted additionally with WAN cards
  • No IP router, no dedicated VPN gateway: Deployment of an appliance with integrated Secure Enterprise Server and WAN connectivity

2. If only single LAN workplaces at a branch office need connection to the network of the organisation, or user specific authentication, then each of the relevant branch office PCs will be fitted with a NCP Secure Client.

Specific requirements overview for VPN solutions:

  • End-to-site security between branch office and company network/LAN workstation(s)
  • Strong authentication via certificates (hardware/user certificate) or OTP tokens (one-time password) for user related authentication.
  • Integrated, dynamic personal firewall

Mobile Data Entry:

Data acquisition on the fly and direct maintenance

Collecting data, or maintaining data in a system from a remote source is a manageable task, when performed with sophisticated end devices and high-end technology. NCP’s VPN solution provides secure data transfer via public networks, WiFis and the Internet. For data collection and transmission of inventory stock or cargo, and for central data collection and transmission of operational and control data, e.g. from ticket machines, manufacturing equipment and industrial robots. Connectivity can be controlled centrally or decentralized for all applications (dial-in/dial-out).

  • Alternative end devices: PDA with integrated barcode reader, PC supported devices and Automats.
  • Operating systems: Windows 8/7, Windows Vista, Windows XP (all 32-/64-Bit), Linux, Windows Mobile (5/6), Windows CE
  • Transfer media: Modem, ISDN, xDSL, LAN, GSM, HSCSD, GPRS, UMTS, HSDPA, WiFi, Internet
  • VPN technology: IPsec

Secure VPN: Data Capture and Remote Control
Secure VPN: Data Capture and Remote Control

Specific requirements overview for the VPN solution:

  • End-to-site security between the remote system and the company network
  • Strong authentication via certificate

Machine to Machine (M2M):

M2M VPN solutions based on Next Generation Network Access Technology

VPN clients for M2M make machines communicate securely with each other

Machine to Machine, M2M in short, is automated information exchange between a control center and end devices like machines, vending machines and vehicles. Security, however, is a neglected issue in M2M communication. Hackers have several options for attacking these types of systems: weaknesses in M2M applications, processors and RAM chips of control systems and sensors. Network connections that communicate with M2M management platforms, however, are especially prone to attacks, partly because the M2M systems mainly communicate via WiFi networks and 2G or 3G connections.

NCP's Secure Enterprise VPN Clients fulfill this task and NCP's Secure VPN Enterprise Management (SEM) provides a central management platform for them. NCP integrated all requirements for secure VPN communication in M2M into our VPN clients, VPN gateways and VPN management.

Examples

  • Checkout terminals / Cash machines
  • Alarm systems / Remote control systems
  • Industrial processes / Machine control

VPN clients for M2M make machines communicate securely with each other

Your benefits: High availability and data security

  • Secure and redundant connection of M2M endpoints and the management systems
  • Fast implementation for integrated modules and central management
  • Flexible switching to an alternative communication network (e.g. 3G or satellite) if the primary communication network (e.g. DSL and ISDN) fails.

Security Technologies

  • VPN
  • Firewall
  • Endpoint security

Central Management:

  • Access administration
  • Identity / Rights management
  • Certificate management