Server Based Computing

• There are 8 parts to review for Server Based Computing
  
  • Part 1: Determine the number of Base Application Bundles you require.
  • Part 2: Determine the number of Microsoft Office Productivity Bundles you require.
  • Part 3: Determine the number of secure ID tokens you require.
  • Part 4: Determine if you need add-on components.
  • Part 5: Determine if you need additional storage.
  • Part 6: Determine if you need to include other COTS applications.
  • Part 7: Determine if you need to include other custom applications.
  • Part 8: Determine if you need migration assistance.

  Service Classification (Emerging, Mainstream, Containment, Retirement)

  This is a mainstream service.

  Service Location (DTS Gold Camp, DTS Cannery, Client Site, Other Site)

  The service is offered at the Gold Camp data center.

  Standard Service

  

  This section describes the standard components of DTS services that are classified as mainstream. Customers that use custom or non-standard services may not find information about all aspects of their particular service(s) in this version of the catalog. We intend to expand and enhance the Service Catalog through a series of frequent updates that will begin this month. In the interim, if you have questions about our services, please contact Customer Delivery.

  SBCS provides the hosting, management and maintenance of customer applications on centralized server farms located at the DTS. This service includes applications such as terminal emulation, word processing, spreadsheet, presentation and email. Potentially, any software residing on the customer workstation is a candidate for server-based computing, including custom built, client/server and legacy applications. Customers can access these centralized applications from any location using two-factor authentication and a web browser.
  
  This service offers an enterprise approach to centralized and standardized end-user application management. It also provides customers a cost-effective solution to maintaining a common set of desktop tools. The environment provides the same look and feel or user experience as an application running on a local workstation, whether in the office, at a remote location or on a mobile computer.
  
  SBCS includes the hosting, management and maintenance of end-user applications on centralized server farms co-located with back-end services such as file, print, and database. It eliminates the need for IT staff to maintain applications on individual devices, thereby saving customer departments staff time upgrading, patching and maintaining applications.
  
  The server based computing model supports the direction toward centralization and standardization of services and assets as defined by the State Chief Information Officer. Furthermore, it allows the state to leverage its buying power and liberates resources within DTS client organizations.

  SBCS provides customers with:

  • SBCS provides end users access to their desktops using any Internet connection and a Microsoft Internet Explorer web browser.
  • Terminal emulation, word processing, spreadsheet, desktop database, presentation and e-mail services;
  • File services for storage of documents;
  • Print services for printing of documents and reports;
  • Centralized management for all software licenses;
  • Centralized patch management for all application software;
  • Access to commercial off-the-shelf (COTS) software packages;
  • Standardized versions of software to ease maintenance and improve information flow and security;
  • A consistent and full-featured user experience regardless of physical location;
  • Two-factor user authentication.

  Benefits to using SBCS

  • When you use the SBCS environment to browse the Internet, you automatically receive the benefit of the DTS embedded firewall, intrusion and anti-virus detection service.
  • Improves the cost-effectiveness of IT and employee productivity by ensuring continuous, reliable access regardless of business disruptions, enterprise growth, technology evolutions or organizational changes.
  • Increases productivity through application version control. All user groups are on the same application versions, reducing the re-sending of data files that must be back-versioned in order to be opened by colleagues.
  • Provides access to virtually any custom or commercially packaged Windows, UNIX, Java, Web or browser-based application.
  • Makes it easier to expand geographic reach to a larger customer base without compromising service quality.
  • Enables device independence with consistent application performance.
  • Enhances Operational Recovery through application, data and device independence.
  • Enables IT administrators to instantly provision and de-provision access to infrastructure resources, and efficiently manage and control access at a granular level.
  • Reduces security risks and costs by monitoring and controlling access from a single point, keeping data in the data center under the management and control of IT staff.
  • Protects information from inadvertently being left on client devices.
  • Reduces the likelihood of password security breaches when complying with enterprise standards or regulatory requirements.
  • Tracks accesses to applications and password change events.
  • Protects data availability and ensures that centrally-managed and protected information resources are available from anywhere.
  • Reduces security risks by centralizing patch and upgrade management. This eliminates the likelihood of missing a workstation within the local environment.
  • Eliminates Virtual Private Network access costs for remote users. Secure Sockets Layer (SSL) access to applications is included in the base application rate.
  • Supports teleworking, which reduces fuel costs and traffic congestion and helps build stronger, more dynamic organizations through employee empowerment.

  Customer Profile

  SBCS is available to state, county, federal and local government entities throughout the State of California. These are just a few of the characteristics that describe a customer SBCS.

  • You have a relatively small office with limited or no IT staff.
  • You have a large office with a large IT staff and most of their time is spent patching core applications.
  • You have a high demand for teleworking to meet your business needs.
  • You want consistent enterprise version control for your Microsoft Office products.
  • Your offices are geographically dispersed and travel costs to support users is skyrocketing.
  • You seek the ability to securely access your applications and network files from anywhere at anytime, without having to load a log-in application on every office desktop.

Security

Application Security

The DTS performs various application vulnerability tasks to ensure that systems housed at the data centers are as safe and secure from unauthorized access attempts as possible. The DTS believes that securing applications from vulnerabilities is just as important as securing the network, operating system, and server on which the application resides. By conducting application vulnerability scans, we can identify vulnerabilities within applications and determine the necessary steps required to mitigate the identified risks.

The DTS must maintain IT security that protects the entire enterprise and customers from unauthorized intrusions. Therefore, DTS provides industry-standard security using hardware and software protocols to protect the SBCS from unauthorized access, modification and deletion.

Customers are expected to observe the various IT security-related best practices, standards and policies in force within DTS including the security guidelines outlined by the International Standards Organization section 17999. Customers not in compliance with DTS security guidelines subject DTS and other customers to unnecessary security risks and consequences. DTS may take remedial action or discontinue service to hosted customers not in compliance with these security guidelines. Security features specific to the SBCS offering:

• All servers involved in the SBCS are positioned behind a firewall. Changes to the firewall rules must be approved by the DTS Information Security Officer (ISO).
• Connections to the SBCS environment are routed through a redundant Demilitarized Zone (DMZ) accessed via SSL only.
• Connections are double encrypted and compressed. A 128-bit SSL digital certificate provides the first layer of encryption. The second layer is provided via the Independent Computing Architecture (ICA) encryption and compression algorithm.
• Access security is enhanced by the use of a secure token code along with the standard user ID and strong passwords.

Physical Security

The DTS follows industry best practices for the physical security of its data centers. These best practices state that processes and procedures should be established to ensure a safe and secure work environment for the DTS workforce and to secure the systems that reside at each of the data centers.

As a result the DTS has developed strict security guidelines, policies, and procedures. These ensure that the DTS technical resources are properly protected, that the integrity and privacy of confidential information is maintained, and that information resources are available when they are needed.

Network Security

Please refer to the Network service for Network Security. Network Technical

Part 1: Base Application

SBCS provides an opportunity to leverage a total package of desktop services. SBCS allow you to securely access your files from anywhere at any time. The standard service includes:

• Firewall Protection and Intrusion Detection
• Data Storage
• Data Backup
• Flexible Payment Structure

With SBCS, all the processing is performed by a central host and only the keystrokes and screen shots are transmitted through your Internet browser from literally any computer connected to the Internet using Internet Explorer 5.5 or higher.

By establishing an Inter-agency Agreement (IAA) with the DTS you can utilize approved purchasing power to avoid the procurement obstacles associated with creating your own SBCS environment. This saves staff time in preparing Requests For Proposal, it reduces the time it takes to begin taking advantage of the benefits of server based computing. If you are an existing customer, your existing IAA can be easily expanded to include SBCS.

Part 2: Microsoft Office

The DTS offers Microsoft Office.

Part 3: Secure Tokens

Two-factor authentication provides the most secure access environment. This technology eliminates the vulnerabilities of fixed passwords with convenient random passcode-generating tokens. With the push of a button, receive your password and log into your environment securely.

Add-on Components

In addition to Microsoft Office, The DTS offers several other COTS software:

Microsoft Visio Standard

Microsoft Visio Professional

Microsoft Project Standard

Microsoft Project Professional

Adobe Acrobat Professional

Part 5: Storage

The DTS offers storage for your working files.

Part 6: COTS Applications

The DTS will work with customers to include other COTS software applications that they need to conduct business.

Part 7: Custom Applications

The DTS will work with customers to include custom software applications that they need to conduct business.

Part 8: Migration Services

The DTS will assist customers with the migration of their existing applications and files to the new SBCS environment.