Private cloud services

office-cloud is a private cloud service operated by prime office in Switzerland. The disting­uishing features of the service are a secure VPN based on open-source software, a high level of availability and an excep­tional cost balance.
All critical compo­nents have a redun­dant design and are thus well prepared against technical problems. The office-cloud techno­logy can also be used at the customer if their IT infra­structure is partially operated in their own data center.

Security gateway

At the heart of the prime office-cloud is the security gateway, which controls the access between the cloud and company network. The HW appliance Px10 provides the firewall, VPN gateway, intrusion detection and all necessary infra­structure services while meeting the strictest security require­ments.

The use of OpenBSD means that a security system can be offered that is geared towards effi­ciency and relia­bility, and all without any unde­tected vulnera­bilities or expen­sive licenses.

office-cloud technologies

Virtualization of hardware

The virtualization of the entire office-cloud is based on ESXi technology from VMware. HP BladeSystems with fiber-optic SANs and redundant Cisco / HP switches are used as the basic hardware.

OpenBSD firewall

OpenBSD is an operating system that has been uncompromisingly streamlined for security. This means there are no unnecessary areas open to attack and it can carry out the firewall tasks efficiently and securely.

OpenVPN VPN

OpenVPN is an open standard for the secure, encrypted connection of mobile end devices or company sites to data centers. OpenVPN software is available for all common operating systems and smartphones.

Icinga monitoring

Icinga (formerly Nagios) is an open-source software system that can monitor all components of an IT infrastructure and applications. Using Icinga, prime office monitors all office-cloud components and is thus able to gain a precise overview of the state of the private cloud.

Snort intrusion detection

Snort is an open-source intrusion detection system that is both extremely flexible and configurable. Thanks to the optimal interaction between all components, Snort can react in a direct and targeted manner to attacks aimed at company networks or the office-cloud.

Cloud glossary

Private cloud

IT services are provided in a data center for a single organization only. Access is protected via a VPN and firewall.

Public cloud

Standardized IT services are provided in a data center to several organizations, usually without a VPN.

VPN

Virtual Private Network – secures the access between branches, the data center and mobile users and secures the connection against eavesdropping.

Redundancy

IT services are protected against failure by the use of duplicated components, e.g. Internet access or security gateway.

Cloud glossary

Private cloud

IT services are provided in a data center for a single organization only. Access is protected via a VPN and firewall.

Public cloud

Standardized IT services are provided in a data center to several organizations, usually without a VPN.

VPN

Virtual Private Network – secures the access between branches, the data center and mobile users and secures the connection against eavesdropping.

Redundancy

IT services are protected against failure by the use of duplicated components, e.g. Internet access or security gateway.