Solutions

Maintain a stable, secure locked down desktop

Run applications without changing administrative permissions and maintain a stable, secure desktop image.

Application deployment requires managing Administrative rights on end user computers.  Giving applications Administrator privileges and unrestricted access puts the machine at risk to viruses yet restricted Administrator rights may cause an application to fail because it requires writing to the file system and registry.  Further more, multi-user access such as Terminal Server or shared desktops can also cause PC instability if users are granted write access to global registry and file system locations.

 

ThinApp eliminates the need to change Administrative privileges during deployment and update stages, and securely isolates the computer from registry and file system changes:

 

  • No modifications are made to computer.  With the ThinApp Virtual OS, specific registry and file locations can be redirected to user specific locations thus eliminating security and stability risk. 
  • Stream application directly from the LAN. ThinApp provides streaming capability without requiring a new server or a client. ThinApp's embedded client technology means users can simply click on EXE files from network shares and the client will be loaded directly into memory.
  • Securely deploy per user. By isolating application deployment from the underlying operating system and isolating application data on a per-user basis, applications can be easily deployed and updated with no risk to system security. 
  • Protect managed desktops. Desktops remain protected from conflicts by running the application in a virtual sandbox, without making changes to the OS.
  • Deploy complex code components without any risk.  Developers are able to deploy complex applications using any set of libraries, frameworks (such as .NET), or COM/ActiveX components without impacting the underlying system security.

 

Because ThinApp runs completely in user mode without kernel mode drivers, virtualized applications cannot circumvent local Windows network, file system, and registry security policies. Microsoft security guidelines recommend user mode solutions to reduce the potential and scope of security vulnerabilities.

 

 

 
Copyright VMware, Inc. 2008. All Rights Reserved