Classification: Open
Secure Remote Access
Lot 4 - Specialist Cloud Services
Lot 4 - Specialist Cloud Services
Service Definition: Secure Remote Access, Issue: 2.0
5.G5.0352.206 Copyright: MDS Technologies Ltd 2014
Contents
Why MDS? ... 1
Summary of service benefits ... 1
Product Overview ... 1
Product Features ... 1
Example Use Cases ... 2
Technical Features ... 2
Overview of the G-Cloud Service ... 2
Information Assurance ... 2
On-Boarding and Off-Boarding processes... 2
Price Model ... 2
Service Management ... 3
Service Constraints ... 3
Service Levels ... 3
Ordering and Invoice Process ... 3
Service Lead Time ... 3
Termination costs ... 3
Consumer Responsibilities ... 3
Technical Requirements... 3
Related Services ... 4
© MDS Technologies Ltd 2014.
Other than for the sole purpose of evaluating this Response, no part of this material may be reproduced or transmitted in any form, or by any means, electronic, mechanical, photocopied, recorded or otherwise or stored in any retrieval system of any nature without the written permission of MDS Technologies Ltd.
Lot 4 - Specialist Cloud Services
Service Definition: Secure Remote Access, Issue: 2.0
5.G5.0352.206 Copyright: MDS Technologies Ltd 2014
Why MDS?
A tailored cloud solution that fits your business needs
Full range of cloud hosting options from pure public cloud to hybrid cloud and physical enablement solutions A support team is based on the same highly secure campus as our cloud platform
A cloud platform is Pan Government Accredited up to IL3 A fully managed platform, supported up to Operating System Over12 years experience of providing infrastructure services SC cleared operational support staff
24/7 support through our ITIL-aligned Service Desk
Additional professional services such as project delivery and technical consultancy ISO 27001, ISO 9001, ISO14001 accredited
Over 12 years experience in supporting Public Sector customers A privately owned, UK sovereign company
We are an SME - agile with minimal bureaucracy
PROFESSIONAL, PERSONALISED SOLUTIONS
Summary of service benefits
Two factor authentication using token based number generators Dedicated solution for each environment
Available in multiples of 25 tokens
MDS Service Desk supporting end user account and token faults Suitable for IL0 to IL3 data
May be bought with MDS’ Compute as a Service offerings
Product Overview
MDS will offer a connection into the cloud secured by two-factor authentication using token based number generators. In addition to the security provided by each operating system, network connection and the underlying server environment, two-factor authentication at the initial login adds an extra level of assurance that the end user is the correct person.
Working on the premise of “what you know” and “what you have” together, access to the system is only available if you have both a physical token and a pre-agreed password. Either stealing the token or using social engineering to obtain somebody’s password individually will not allow unauthorised access. This product can be used alongside any operating system, but is ideally placed to secure access to MDS’ CaaS and PaaS offerings.
Product Features
The Secure Remote Access product offers the following benefits: Per token pricing
Dedicated authentication system with individual user tokens
Lot 4 - Specialist Cloud Services
Service Definition: Secure Remote Access, Issue: 2.0
5.G5.0352.206 Copyright: MDS Technologies Ltd 2014
Example Use Cases
Organisations may use the Secure Remote Access service in the following scenarios: Securing access to an Internet facing management server
Providing additional logon security for specific servers within an otherwise less secure environment
Ensuring that login accounts are not shared between members of staff
Technical Features
The service has the following features:
MDS typically provides this service using RSA SecurID Authentication Manager software
Hardware and software tokens are available
Alternative products can be used if required by the customer
Implementation of this service requires an additional server to be introduced into the customer environment to run the authentication software.
Overview of the G-Cloud Service
Organisations are able to purchase two-factor authentication services in bundles of 25 users in order to provide additional security for their server environment. If issues occur organisations are able to receive support reactively to resolve issues. Our service encompasses the following scope
Implementation and setup of secure remote access solution Provision and management of hardware or software tokens Cancellation of lost or stolen tokens
Information Assurance
Suitable for IL0, IL1, IL2 and IL3 data.
This service would typically be included within the Customer’s overall accreditation profile.
On-Boarding and Off-Boarding processes
MDS provides an onboarding and offboarding process for this service.
During on-boarding MDS will work with the customer to configure the end user accounts that are required for this service. This involves installing a central server appliance within the customer’s server environment on IaaS resources or hardware as provided by the customer. MDS then works with the customer to gather the information required to create individual user accounts.
During off-boarding MDS will remove the central server software and recover tokens from the end users.
Price Model
MDS price this service based on the following volumes:
Quantity of Tokens Per Token
Lot 4 - Specialist Cloud Services
Service Definition: Secure Remote Access, Issue: 2.0
5.G5.0352.206 Copyright: MDS Technologies Ltd 2014
Quantity of Tokens Per Token
Monthly Charge
25 Tokens £25
50 Tokens £20
100 Tokens or greater £15
Greater quantities can be provided if required. Prices are based on a 24 month contract. Lost tokens are charged at £75 per token.
Price excludes the cost of IaaS compute or similar needed to run the Secure Remote Access software within the customer’s environment.
Service Management
MDS provides a managed service for this product covering intial user account creation and resolution of problems relating to system access caused by the secure remote access service. This is provided using the MDS Service Desk which operates during MDS standard business hours (08:00 – 18:00 Monday to Friday excluding Bank Holidays).
Service Constraints
There are no service constraints other than those highlighted per subscription option.
Service Levels
MDS aims to resolve token issues through our Service Desk first time fix team, with a stated service level of 4 hours for incident resolution.
Ordering and Invoice Process
A purchase Order is required and billing for the service can either be monthly or quarterly in arrears. Payment can be via the following methods: BACS or Cheque.
Service Lead Time
Organisations can purchase subscriptions and be activated within 10 working days.
Termination costs
There are no termination costs for this service.
Consumer Responsibilities
Security of user tokens and PIN.
Facilitating communication between MDS and token users in order for account request forms to be successfully completed.
The control and management of access and responsibilities for end users.
The consumer is also responsible for ensuring only appropriate data (e.g. IL0-IL2 or IL3) is accessible within this service.
Technical Requirements
Lot 4 - Specialist Cloud Services
Service Definition: Secure Remote Access, Issue: 2.0
5.G5.0352.206 Copyright: MDS Technologies Ltd 2014
Related Services
This service may be bought in conjunction with the following other G-Cloud services: Connecting to the Cloud (5.G5.0352.205)