Experience the ultimate flexibility with the Isolation API, allowing you to securely Quisque pellentesque id ultrices lacus ornare elit vitae ullamcorper. Learn More

U.S. gov agency swaps restrictive web access policy for Secure Browsing

For years, a U.S. regulatory agency employed a highly restrictive approach to web security: employees weren’t permitted to access their personal email accounts, all cloud storage was off-limits and all foreign websites were blocked by default. Secure Browsing helped create a less constrictive and more productive work environment while still protecting the agency from malware and other web-borne threats. Silo replaces restrictive policies and opens up access.
U.S. gov agency swaps restrictive web access policy for Secure Browsing

Silo for Safe Access gives the agency’s IT full control of their web use

An independent U.S. federal regulatory agency has all its employees located within the Washington D.C. headquarters. From the security perspective, this made it easier to implement a tightly controlled IT landscape based on the “least privilege” model, limiting access only to approved U.S.-based sites.

As the agency’s personnel doesn’t normally interact with entities outside the U.S., the security team universally banned all access to foreign-origin sites to help prevent malware, phishing and targeted attacks from overseas malicious actors. If employees needed access to restricted sites or cloud storage, they were instructed to submit requests with the agency’s IT team, which reviewed each case individually to decide whether to grant access.

Employees were not permitted to access personal sites or email accounts while onsite.

Silo helps makes employees more productive without compromising security

The agency initially rolled out Silo for Safe Access using a native client and are now combining it with the web client, which has proven very helpful for users on Mac and Citrix platforms. Users no longer have to submit IT requests when they need to access blocked sites – they use Silo to browse the web and even occasionally check personal email and social media accounts – without risk.

IT still has full control of their data and environment and can use clearly defined policies to govern web use. Users are permitted to download files from the web to Authentic8 secure storage because Silo always scans them for malware, but they are restricted from uploading files due to data exfiltration concerns.

The agency’s IT group maintains a library of helpful articles to make sure that users are comfortable with using Silo. Instead of responding to individual requests to unblock sites, they now instruct users on how to access them with Silo.

Based on a recommendation from a compliance audit, the agency has recently decided to move to the Authentic8’s FedRAMP (Federal Risk and Authorization Management Program) infrastructure. FedRAMP is the only third-party certification program approved by the U.S. government to vet the integrity of private cloud services, and Authentic8 is currently the only cloud-based web isolation platform to receive FedRAMP approval.

Authentic8 is currently the only cloud-based web isolation platform to receive FedRAMP approval.


Related Success Stories

success story

Enabling remote work for discriminating professionals

Enabling remote work for discriminating professionals Inspired by the COVID-19 pandemic, organizations within the DoD turned social distancing and telework directives into the opportunity to expedite progress on their digital transformation initiatives. While others were seeking a short-term…

success story

Securing emails of nonprofit community health center

Securing emails of nonprofit community health center  Our customer, a nonprofit community health center in the Washington, D.C. metropolitan area, specializes in HIV/AIDS and LGBT healthcare. Founded as an affirming health center in 1978, the health center now provides community-based…