New White Paper Resolves Overlooked Outlook Web Access Security Risks
Logging in on Shared Computers & Leaving Active Sessions Top the List of Problems
Toronto, Canada, July 22, 2007 --(PR.com)-- Microsoft Office Outlook Web Access (OWA) is the corporate web mail solution of choice for the overwhelming majority of companies today and most of these companies secure their OWA environment with a Microsoft Internet Security & Acceleration (ISA) firewall server. A new white paper released today by Messageware (www.messageware.com), the world's leading provider of enterprise productivity and security solutions for Microsoft Office Outlook Web Access, highlights often overlooked security risks for organizations running OWA with ISA Server. In addition, it offers effective solutions for securing OWA against those risks.
Topping the list of vulnerabilities are users logging in using shared computers, such as at conference kiosks, at home, internet cafes, client sites or university computer labs and leaving an active session, either by navigating away from the page or closing the browser window without first logging off. When a user logs into OWA it creates a cookie that can act as a continuous bridge into OWA user accounts and potentially, one’s network or servers. ISA Server 2000 & 2004 contain an auto logoff feature, but there are still scenarios where unauthorized users can access active sessions. In addition, the newly released 2006 version does not have the auto logoff feature, resulting in users being able to navigate away from active OWA sessions without any warning.
To minimize an organization’s risk, Messageware offers two security software solutions that work hand-in-hand with OWA – NavGuard and TimeGuard. Originally introduced in 2006 and currently in use by thousands of OWA users, both solutions extend the security of ISA to offer total protection for OWA users and peace of mind for IT/Messaging Managers. NavGuard detects when a user has navigated away from an active session and prompts him or her to either logoff or return to the OWA session, while TimeGuard prompts the user when they are close to reaching a session inactivity limit, giving the option of either extending the session or logging off.
“Given the rise in the numbers of remote employees and people working longer hours, companies today have no choice but to offer access to email from any location at any time, but with that flexibility and high availability comes security risks that must be addressed,” said Mark Rotman, President & CEO of Messageware. “We add a critical layer of security to OWA and ISA for companies needing to prevent information from being leaked to competitors as well as adhering to compliance laws or client confidentiality agreements.”
To download the white paper, visit http://www.messageware.com/ISAWhitePaper.htm
###
About Messageware
Founded in 1993 and headquartered in Toronto, Canada, Messageware develops and markets solutions that enhance and secure Outlook Web Access. A trusted Microsoft Gold Certified Partner and a Global Exchange ISV for nearly 15 years, their applications give companies of all sizes the ability to enhance and customize OWA. Messageware’s solutions have resulted in a greater return on an organization’s Microsoft Exchange investment for over 2,000 enterprises and four million users worldwide, including many Fortune 500 companies and in industries such as banking, education, financial services, government, healthcare and law. For more information, visit www.messageware.com.
Topping the list of vulnerabilities are users logging in using shared computers, such as at conference kiosks, at home, internet cafes, client sites or university computer labs and leaving an active session, either by navigating away from the page or closing the browser window without first logging off. When a user logs into OWA it creates a cookie that can act as a continuous bridge into OWA user accounts and potentially, one’s network or servers. ISA Server 2000 & 2004 contain an auto logoff feature, but there are still scenarios where unauthorized users can access active sessions. In addition, the newly released 2006 version does not have the auto logoff feature, resulting in users being able to navigate away from active OWA sessions without any warning.
To minimize an organization’s risk, Messageware offers two security software solutions that work hand-in-hand with OWA – NavGuard and TimeGuard. Originally introduced in 2006 and currently in use by thousands of OWA users, both solutions extend the security of ISA to offer total protection for OWA users and peace of mind for IT/Messaging Managers. NavGuard detects when a user has navigated away from an active session and prompts him or her to either logoff or return to the OWA session, while TimeGuard prompts the user when they are close to reaching a session inactivity limit, giving the option of either extending the session or logging off.
“Given the rise in the numbers of remote employees and people working longer hours, companies today have no choice but to offer access to email from any location at any time, but with that flexibility and high availability comes security risks that must be addressed,” said Mark Rotman, President & CEO of Messageware. “We add a critical layer of security to OWA and ISA for companies needing to prevent information from being leaked to competitors as well as adhering to compliance laws or client confidentiality agreements.”
To download the white paper, visit http://www.messageware.com/ISAWhitePaper.htm
###
About Messageware
Founded in 1993 and headquartered in Toronto, Canada, Messageware develops and markets solutions that enhance and secure Outlook Web Access. A trusted Microsoft Gold Certified Partner and a Global Exchange ISV for nearly 15 years, their applications give companies of all sizes the ability to enhance and customize OWA. Messageware’s solutions have resulted in a greater return on an organization’s Microsoft Exchange investment for over 2,000 enterprises and four million users worldwide, including many Fortune 500 companies and in industries such as banking, education, financial services, government, healthcare and law. For more information, visit www.messageware.com.
Contact
Messageware
Carol Arnold
877-718-4604 x2
www.messageware.com
Carol Arnold
877-718-4604 x2
www.messageware.com
Contact
Categories