SaaS Secure Client (SSC) Compatible with Entra ID SaaS Secure Client (SSC)

Ascentec Corporation (Headquarters: Chiyoda-ku, Tokyo; President: Takashi Matsuura) announces that its wholly owned subsidiary, Breakout Corporation, has developed the SaaS Secure Client (SSC), a dedicated SaaS client to protect information assets from security risks when using SaaS. Breakout Corporation is pleased to announce that it has developed a SaaS client "SaaS Secure Client" (SSC) to protect information assets from security risks when using SaaS.

SaaS Secure Client," a security solution for SaaS users

In recent years, ransomware and other malware infections have become a social problem, causing serious damage. As a countermeasure, companies have deployed a variety of software such as anti-virus, EDR, MDM, DLP, and system monitoring, and have devoted many resources to their maintenance and updating, resulting in ever-increasing security costs. In addition, in July of this year, a major worldwide system failure occurred due to EDR software.

On the other hand, applications used by many companies are shifting to SaaS, and an increasing number of advanced companies are completing their operations using SaaS alone.

In response to these changes in the system environment, Breakout has been developing an ideal next-generation endpoint security solution that we believe will greatly simplify and reduce the cost of security systems for our SaaS-driven customers.

The SSC, which we are announcing today, was developed as an endpoint system for SaaS-only access based on the following concepts

Completely block malware infection

No security software required

Protects against data leakage and theft

SSC was developed based on "Resalio Lynx", which we have been developing as a thin client OS for a long time and is used by many customers including megabanks, and has the following functions and features.

Functions and Features of SSC

(1) Built-in secure browser

The Secure Browser, developed by customizing the Chromium browser, prevents file uploads to SaaS that are not authorized by the company. This prevents file attachments to personal emails and file transfers to shadow IT, thereby preventing intentional data theft.

(2) Microsoft Entra ID Support

The system is now compatible with Microsoft Entra ID ("Entra ID"), an integrated cloud ID management and access management solution provided by Microsoft Corporation that is used by many customers.

SSCs with certificates stored in the OS and secret area built into special USB devices can be utilized as devices under Entra ID management through multi-factor authentication, and Single Sign On (SSO) to SaaS is supported.

This makes it impossible to log in from a PC or SSC other than the one managed by the customer, thus preventing "spoofing".

(3) Provided Devices

The SSC uses an existing Windows PC, and after booting up by inserting a special USB (ROM type), the OS runs on the memory and access to the PC's internal disk is blocked (thin client method). Since this device has no data storage space, there is no risk of information leakage even if the device is lost. Furthermore, restricted disk access prevents malware infection.

(4) Equipped with a secure folder

The concept of a desktop does not exist in SSC. Therefore, a secure folder for temporary storage of files is provided to facilitate file linking between SaaS. This secure folder is placed in memory and allows files to be temporarily stored and uploaded to company-approved SaaS. Temporarily stored files are erased when the power is turned off. In addition, the secure folder can only view temporarily stored files and cannot access other files.

(5) Response in case of device loss

SSC devices require a startup password and data storage is not allowed. Furthermore, if the activation password is mistaken more than a certain number of times, the SSC device can be automatically deactivated, and the SSC device can be immediately deactivated by the administrator.

(6) Tenant Restrictions

End users of Microsoft 365 authorized by the company are prohibited from copying or storing data on their personally owned Microsoft 365. For example, it completely blocks the copying of files using an individual's One Drive that is separate from the Entra ID account owned and authorized for use by the company. This feature prevents malicious users from taking company information assets without the need for a web proxy server.

Customers who are expected to benefit from the use of SSC

(1) A department in a company that performs only SaaS routine operations.

(2) End-users who outsource specific SaaS routine operations in a company

(3) End users who telework

SaaS can be securely executed BYOD using SSC without having to carry a full-spec PC when telecommuting or traveling.

All customers are still highly dependent on desktop applications, although they are effective when completed with SaaS.

With the new support for Entra ID, we believe that it will be possible to reduce the burden on the system department and cut costs by providing only SSC to some SaaS users in companies, without lending them full-spec PCs.

Effects of Introducing SSC

(1) By replacing PCs loaned to subcontractors with SSCs, costs and security levels were greatly improved.

(2) Eliminates the need for security software (anti-virus, EDR, MDM, DLP, system monitoring, etc.) installed on full-spec PCs, significantly reducing licensing costs.

(3) Easily enables secure BYOD

(4) Significantly reduces maintenance and software updates for PCs used by SSCs

(5) Improved portability without having to carry heavy PCs when telecommuting or traveling

(6) Prevent data leakage and theft from client terminals

The Group considers investment in the development of original products to be an important growth strategy. We believe that the newly announced SSC will significantly improve security levels and costs in anticipation of the transformation of many enterprises to cloud-native in the near future. We will continue to focus on product development to contribute to our customers' work style transformation.

SSC System Conceptual Diagram

■Fees

Annual fee 7,200 yen～/user (excluding tax)

*The fee is for 300 or more licenses. Please inquire for details.

The price of the dedicated USB device is included.

The cost of SI service and USB customization on the Entra ID side are not included.

Scheduled date of shipment

September 9, 2024 (Monday)

Free Trial

Please apply using the web application form.

Please apply using the web application form. https://secure-link.jp/wf/?c=wf42488912&product=SaaS%20Secure%20Client

Webinar Information

Thorough protection against ransomware, phishing fraud, and internal fraud! Data Protection Seminar using SaaS dedicated clients compatible with Entra ID

Date: Wednesday, October 2, 2024, 14:00-15:00

Place: Webinar (Zoom)

Organizers: Ascentec Corporation, Breakout Inc.

　　　 https://www.ascentech.co.jp/event/24/241002.html

About Ascentec Corporation

Ascetec is a leading provider of business solutions that are "easy, fast, and safe! Contribute to the transformation of our customers' business workstyle. Under the corporate philosophy of "Simple, Fast, Secure!", the company's main business is the development, sales and consulting services of products related to virtual desktops, as well as cyber security solutions and cloud service related businesses. In addition, we will strengthen our ESG initiatives and contribute toward a sustainable society.

Listed on the Tokyo Stock Exchange Standard Market [Securities Code: 3565].

*Company names and product names mentioned herein are trademarks or registered trademarks of their respective companies.