Secure Remote Access Version: 2.0, Issue Date: 05/02/2014 Classification: Open
Classification: Open ii MDS Technologies Ltd 2014. Other than for the sole purpose of evaluating this Response, no part of this material may be reproduced or transmitted in any form, or by any means, electronic, mechanical, photocopied, recorded or otherwise or stored in any retrieval system of any nature without the written permission of MDS Technologies Ltd. MDS Technologies Ltd, Spring Park, Westwells Road, Corsham, Wiltshire SN13 9GB Telephone: 01225 816220, Fax: 01225 816281 Contents Why MDS?... 1 Summary of service benefits... 1 Product Overview... 1 Product Features... 1 Example Use Cases... 2 Technical Features... 2 Overview of the G-Cloud Service... 2 Information Assurance... 2 On-Boarding and Off-Boarding processes... 2 Price Model... 2 Service Management... 3 Service Constraints... 3 Service Levels... 3 Ordering and Invoice Process... 3 Service Lead Time... 3 Termination costs... 3 Consumer Responsibilities... 3 Technical Requirements... 3 Related Services... 4
Classification: Open 1 Why MDS? A tailored cloud solution that fits your business needs Full range of cloud hosting options from pure public cloud to hybrid cloud and physical enablement solutions A support team is based on the same highly secure campus as our cloud platform A cloud platform is Pan Government Accredited up to IL3 A fully managed platform, supported up to Operating System Over12 years experience of providing infrastructure services SC cleared operational support staff 24/7 support through our ITIL-aligned Service Desk Additional professional services such as project delivery and technical consultancy ISO 27001, ISO 9001, ISO14001 accredited Over 12 years experience in supporting Public Sector customers A privately owned, UK sovereign company We are an SME - agile with minimal bureaucracy PROFESSIONAL, PERSONALISED SOLUTIONS Summary of service benefits Two factor authentication using token based number generators Dedicated solution for each environment Available in multiples of 25 tokens MDS Service Desk supporting end user account and token faults Suitable for IL0 to IL3 data May be bought with MDS Compute as a Service offerings Product Overview MDS will offer a connection into the cloud secured by two-factor authentication using token based number generators. In addition to the security provided by each operating system, network connection and the underlying server environment, two-factor authentication at the initial login adds an extra level of assurance that the end user is the correct person. Working on the premise of what you know and what you have together, access to the system is only available if you have both a physical token and a pre-agreed password. Either stealing the token or using social engineering to obtain somebody s password individually will not allow unauthorised access. This product can be used alongside any operating system, but is ideally placed to secure access to MDS CaaS and PaaS offerings. Product Features The Secure Remote Access product offers the following benefits: Per token pricing Dedicated authentication system with individual user tokens Managed environment using MDS service desk to resolve token issues
Classification: Open 2 Example Use Cases Organisations may use the Secure Remote Access service in the following scenarios: Securing access to an Internet facing management server Providing additional logon security for specific servers within an otherwise less secure environment Ensuring that login accounts are not shared between members of staff Technical Features The service has the following features: MDS typically provides this service using RSA SecurID Authentication Manager software Hardware and software tokens are available Alternative products can be used if required by the customer Implementation of this service requires an additional server to be introduced into the customer environment to run the authentication software. Overview of the G-Cloud Service Organisations are able to purchase two-factor authentication services in bundles of 25 users in order to provide additional security for their server environment. If issues occur organisations are able to receive support reactively to resolve issues. Our service encompasses the following scope Implementation and setup of secure remote access solution Provision and management of hardware or software tokens Cancellation of lost or stolen tokens Information Assurance Suitable for IL0, IL1, IL2 and IL3 data. This service would typically be included within the Customer s overall accreditation profile. On-Boarding and Off-Boarding processes MDS provides an onboarding and offboarding process for this service. During on-boarding MDS will work with the customer to configure the end user accounts that are required for this service. This involves installing a central server appliance within the customer s server environment on IaaS resources or hardware as provided by the customer. MDS then works with the customer to gather the information required to create individual user accounts. During off-boarding MDS will remove the central server software and recover tokens from the end users. Price Model MDS price this service based on the following volumes: Quantity of Tokens Per Token Monthly Charge
Classification: Open 3 Quantity of Tokens Per Token Monthly Charge 25 Tokens 25 50 Tokens 20 100 Tokens or greater 15 Greater quantities can be provided if required. Prices are based on a 24 month contract. Lost tokens are charged at 75 per token. Price excludes the cost of IaaS compute or similar needed to run the Secure Remote Access software within the customer s environment. Service Management MDS provides a managed service for this product covering intial user account creation and resolution of problems relating to system access caused by the secure remote access service. This is provided using the MDS Service Desk which operates during MDS standard business hours (08:00 18:00 Monday to Friday excluding Bank Holidays). Service Constraints There are no service constraints other than those highlighted per subscription option. Service Levels MDS aims to resolve token issues through our Service Desk first time fix team, with a stated service level of 4 hours for incident resolution. Ordering and Invoice Process A purchase Order is required and billing for the service can either be monthly or quarterly in arrears. Payment can be via the following methods: BACS or Cheque. Service Lead Time Organisations can purchase subscriptions and be activated within 10 working days. Termination costs There are no termination costs for this service. Consumer Responsibilities Security of user tokens and PIN. Facilitating communication between MDS and token users in order for account request forms to be successfully completed. The control and management of access and responsibilities for end users. The consumer is also responsible for ensuring only appropriate data (e.g. IL0-IL2 or IL3) is accessible within this service. Technical Requirements Organisations must be able to allow support operatives to access the computing environment.
Classification: Open 4 Related Services This service may be bought in conjunction with the following other G-Cloud services: Connecting to the Cloud (5.G5.0352.205) Cloud Enablement (5.G5.0352.208) Transition Management (5.G5.0352.033) Desktop Services (5.G5.0352.214)