Raynor

Future of EEC vs. Cloud Console

Recommended Posts

With the new cloud-based console ("My Emsisoft workspaces") in BETA,
I was wondering what the future holds for the "classic" (i.e. locally installed) EEC.

Having deployed EEC in my company, we might want to migrate to the cloud-based console
at some point in the future, but certainly not before it has become utterly reliable and stable.

For how long (rougly) is the classic EEC going to be supported in the future?

 

Oh, and two additional question that have crossed my mind:

1) What about the local update caching proxy that is supplied by EEC?
How is this feature going to be transferred to cloud-managed installations?
Are you planning some kind of peer-to-peer update caching similar to the
Delivery Optimization feature of Windows 10?

2) Is there going to be a way to import profiles from EEC to the cloud console
(including perhaps automatically transferring locally managed clients to being cloud-managed)?
That would ease the transition process quite considerably...

Thanks!
Raynor

Share this post


Link to post
Share on other sites

Hi Raynor,

We currently don't have concrete plans to end Emsisoft Enterprise Console.
If we ever come to that point, we would make an announcement at least one year in advance to provide planning safety for our customers.

 

1) Local update caching will become available later.

2) We have no plans to offer a profiles migration path, for now.

Re-connecting existing devices from EEC to ECC will become an easy procedure and can be automated.

 

We are working hard to add new features to Emsisoft Cloud Console.

Feel free to start testing it and see how stable it is.
You can connect existing Emsisoft installs manually as of version 2019.3.

Thanks

 

  • Thanks 1

Share this post


Link to post
Share on other sites

Hi Frank,

thanks for the quick reply. Overall this sounds like a good plan.

1) Any hint on how this might work (as there won't be a local, centrally installed proxy on a server anymore...)

2) OK, not a big problem IMHO 😀

I will definitely do some testing in the near future 👍

 

Share this post


Link to post
Share on other sites

Hi Raynor,

1)  yes there will be ;) 
Even current EEC update proxy is a separate process that runs separate from EEC's processes.

 

Thanks

 

Share this post


Link to post
Share on other sites

1) OK, nice 😁

PS What about a dedicated "cloud console beta" section in the forum 😋

EDIT: Thanks for consolidating the various beta sub-forums into a more general "Beta Community" forum.

Share this post


Link to post
Share on other sites
Quote

1) What about the local update caching proxy that is supplied by EEC?

We have implemented this feature in Emsisoft Anti-Malware 2019.7 and current version of Cloud Console.

  • Thanks 1

Share this post


Link to post
Share on other sites
On 4/11/2019 at 9:53 PM, Raynor said:

For how long (rougly) is the classic EEC going to be supported in the future?

Emsisoft Enterprise Console, will no longer be supported after December 31, 2020.

https://blog.emsisoft.com/en/34808/moving-to-the-cloud-the-emsisoft-anti-malware-management-roadmap/

I'm happy that it will be not 2019. That will leave me enough time to find a different AV with local support.
As long as I have to follow GDPR, a cloud system for the enterprise is not suitable for my customers.

Most companies currently ignore the rules, but at least two European AV companies still offer an on-premise console.
 

Share this post


Link to post
Share on other sites

I have no concern about cloud management, but trying to explain why someone should not be worried about it. The issue I am stuck on explaining and would like to hear about is the example of ransomware. One of the first steps to stop the infection is to disconnect the internet. They are now worried about not being able to manage the AV and perform any mitigation steps via the cloud console. What are thoughts on that?

Share this post


Link to post
Share on other sites

@merryworks 

Thanks for your feedback. First of all, Emsisoft offers one of the best protection layers against ransomware.

If there anyway would be a need to disconnect the devices from the internet, you could use the 'Network Lockdown' feature in Emsisoft Cloud Console.

This wil not disconnect the devices from Emsisoft Cloud Console as that would render the AV un-managed.
EAM will stay fully manageable and receive updates.

 

image.png.9bb5fa6d38ac504b973850105a3a961c.png
Download Image

Does that make sense ?

 

Share this post


Link to post
Share on other sites
On 12/20/2019 at 10:19 PM, Frank H said:

@jedsiem why so concerned about cloud ?

I'm still looking for the technical and organizational measures as integral part of the contract for using the ECC.
Currently nobody cares. But that will change. Currently the ECC is hosted in the Hetzner datacenter in Germany. Many technical and organizational measures will be from Hetzner, but the remote worker from EMSISoft are still uncovered by technical and organizational measures.

Share this post


Link to post
Share on other sites

At the end of the day, no technical or organizational measure can truly guarantee that your data will never be hacked or leaked, which is why we always design our systems with the expectation that it may get hacked one day. However, it's in our hands to reduce the potential surface for attacks significantly. In particular (among other general security principles), we make sure that:

  • Only one person in our company (that's me, as acting managing director) has full access to our main customer database servers, with one technical management person in backup for emergency situations only. Regular software developers don't have access at all. We manage our critical cloud servers by ourselves without third parties having access to them.
  • Developers can never access our production servers directly, all new code exclusively goes through our code repository and build processes that log all changes. So if someone would be tempted to sneak in bad code, we could easily trace it down to a person.
  • We do have strict data protection protocols in place with all our team members. The fact that someone works remote doesn't change anything from a legal perspective, they are still members of our team just like someone who would be sitting in an old-school office.
  • We design our software to only process the least amount of information required to achieve the software's purpose. We don't collect random data just because we can. Our software never sends any customer files to Emsisoft servers without the user's permission. We are only interested in executable files and don't send any files that contain personal information (documents, user data files, etc). In most situations, we don't even transfer files but work with calculated hash values and meta data only.
  • Our browser extensions don't submit the complete website addresses that a user visits, but only sends hashes of URL fragments that may or may not match. At no point Emsisoft knows if and which exact URLs are detected as malicious or fraudulent. So we're unable to create extensive user profiles based on web browsing habits.

As I said before those are still no perfect guarantees but that's the best we can do. The fact that Emsisoft is a rather small team of 40 also somewhat reduces the risk for you as a customer, compared to many of our competitors that have more than 1000 people on their payroll and each of them posing a potential risk for data exfiltration. My observation is that business size and the unavoidable exponentially growing complexity of systems are one of the main reasons for security problems these days.

Back to your initial concerns about cloud solutions: The main advantage of cloud based AV management solutions is that if it ever happens that your device gets infected, you still have an off-site record of what happened. Even if the entire devices gets encrypted or wiped, you still have a full action log stored in the Emsisoft Cloud Console, which potentially allows you to forensically trace an infection back to its origin.

Hope that helps.

 

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    No registered users viewing this page.