My organization is looking to expand its remote access solution. We are currently using Citrix with Secure ID to provide access to email and some in house apps for managing sick and vacation time. We would like to expand this access for users to access a much broader array of application all through Citrix. The question of how secure the solution is comes into play.
The security folks fear worms and Trojans and site that the solution is not secure enough. The systems folks ask the question of what do people like Citibank and Chase do. They use the example of online banking and the use of static passwords and cookies. We are using secure ID so ?we should be in a better position?
Any thoughts or suggestions are welcome.
