Security and Encryption Information for Remote Control Connections

Version 3

    Verified Product Versions

    LANDESK Management Suite 2016.xLANDESK Endpoint Manager 2017.x

     

    Ivanti remote-control is used to remotely access a device. You can only remote control devices that have the remote-control agent installed. During a remote-control session, the remote device has two users—you and the end user. You can do anything at the remote device that the user sitting at it can do. If the device agent has been configured to do so (in the device's agent configuration), you can also require the user to give permission before each new session can be initiated.

     

    Ivanti Remote Control Security information

    • Ivanti remote control uses encrypted HTTP communication both to the remote-control agent and to the Cloud Services Appliance (CSA).
    • All “off box” communications use SSL encryption (no bare sockets).
    • Ivanti has updated completely to SHA 256.
    • Ivanti no longer supports 64 bit ciphers in our communication.
    • No insecure versions of SSL/TLS are in use; both for the CSA and HTML5 RC.
    • Below is the cipher list currently used in HTML5 RC:

     

    ECDH+AESGCM:DH+AESGCM:ECDH+AES128:DH+AES:RSA+AESGC ECDH+M:RSA+AES:!aNULL:!RC4:!MD5:!DSS