The OmniAccess 3500 Nonstop Laptop Guardian (NLG) is a PCMCIA card that enables laptops to be constantly connected to a central corporate server, even if the laptop itself is turned off; enabling continuous security and patch management-related features for mobile computers. The two component platform (the PCMCIA card itself, and a central server appliance that would reside within the organization's premises) provides the ability for security and network administrators to both track the location of and control the data access capabilities of laptop computers through 3G, WiFi, or LAN connectivity. The platform will be offered primarily through cellular service providers who would bundle it with their 3G WAN services.

The PCMCIA card is basically a mini-computer of its own; including a hardened Linux-based O/S, embedded CPU, WWAN modem (with versions supporting EV-DOrA, HSUPA/HSDPA, or WiMAX), non-volatile Flash memory (256 MB), GPS client, VPN client, and a rechargeable battery that enables the card to continue operating when the laptop is shutdown or in hiberation/sleep mode. It can automatically establish a connection with the corporate server component, including VPN tunneling, enabling corporate personnel to track the laptop and manage it remotely.

Features enabled by this always-on platform include:

- Automatic VPN connectivity, forcing the laptop to route all Internet activity and access through the corporate network (and therefore through the corporate LAN security)

- Anti-tampering monitoring, enabling corporate personnel to receive alerts and/or actions to be taken when changes that effect the card or the laptop's security occur

- Support for embedded encryption keys on the card, which can integrate with HD encryption tools forcing the card to be present in the machine in order to read its data. Keys can be backed up, erased, rotated or recreated based on policies and threat levels

- Authentication, enabling the card itself to act as a second or third authentication factor for accessing the laptop. Such authentication can be policy-based; triggered by the laptop's location or health

- Remote, over-the-air data backup

- Remote data wipe: If the laptop should be lost or stolen, its encryption key can be removed or disabled and/or its data can be wiped remotely from the corporate office

- Patch management: Patches can be pushed to and stored on the card for automatic application the next time the laptop is booted

Open APIs additionally enable the adaptation of 3rd party applications to utilize the card's features.

New features of the NLG include integration support for full disk encryption (where the FDE keys can be stored on, accessed, and managed through the NLG card); support for smartcard emulation and therefore usable with platforms that require smartcard-based authentication; support for SSL VPN connectivity; multi-user support (multiple users on the same laptop); and a new gateway appliance targeted to mid-sized companies (support for up to 500 NLG users).

The OmniAccess 3500 Nonstop Laptop Guardian is available now. Visit the Alcatel-Lucent Web site for further information.