ECOS SecureBootStick® HE

High-security with hardware encryption

Remote access with hardware encryption

The ECOS SecureBootStick HE

The ECOS SecureBootStick® HE takes the proven concept of the SBS CL to a new level of remote access security. Equipped with specially developed hardware encryption and multiple security features, it enables highly secure access to terminal servers, virtual desktop infrastructures, and web applications from a fully encapsulated environment.

How the Secure Boot Stick HE works

With the ECOS SecureBootStick HE, any PC or Mac boots into the specially hardened ECOS Secure Linux operating system. The internal hard disk remains switched off, preventing any malware on the device from executing. This ensures complete separation between professional and private use of the computer.

The Secure Boot Stick HE provides a protected and fully encapsulated working environment and serves as a strong two-factor authentication device, using a cryptographic key anchored in the hardware.

View product flyer

Step-by-step
  • Connect the SBS HE to the PC or Mac.
  • Boot the computer – ECOS Secure Linux starts.
    The local hard disk remains inactive
  • Select the destination system, and enter your username and password.
    You're all set!

4 good reasons for the ECOS SecureBootStick solution

  • Installation and configuration-free
  • All software resides on the SBS
  • Works with any Internet connection
  • Intuitive user settings
  • Strong 2-factor authentication via crypto anchor
  • Hardware-encrypted
  • Hardened Linux operating system
  • Protected & encapsulated environment
  • Read-only and digitally signed
  • Integrated firewall
  • 100% separation of professional and private use
  • No access to the internal hard drive
  • External data transfer only with approval
  • Instant logout when SBS is unplugged
  • Simple integration into IT infrastructure
  • Fast roll-out of SBS
  • Central management
  • Minimal support requirements
  • Low investment costs

Whitepapers & Case Studies

Whitepaper: Risks of long-term attacks in the home office

cat81,cat16,cat18,cat71,cat70
No match found!

More products from the SBS family

  • Hardened ECOS Secure Linux operating system
  • All software on the SBS
  • Multi-factor authentication with smartcard
  • Connects to VPN gateway genua genuscreen
  • Integrated…
Lean more
cat77,cat15,cat48

  • Hardened ECOS Secure Linux operating system
  • All software on the SBS
  • MFA w/ external PKI card or ID-1 card
  • Compatible with Bundeswehr military ID card
  • Connects to…
Lean more
cat77,cat15,cat48

  • Hardened ECOS Secure Linux operating system
  • All software on the SBS
  • MFA w/ PKI card or ID-1 card
  • Connects to all standard VPN gateways
  • Integrated firewall
  • Central…
Lean more
cat15,cat48
No match found!

Learn more about the SBS HE today!

Phone +49 (6133) 939-200

Get a
consultation
Send a
message

Technical information on the Secure Boot Stick HE

  • RDP client, Citrix Workspace app (previously Citrix Receiver), VMware Horizon via RDP, PCoIP, BLAST, Firefox, Chromium, VPN client for IPsec
  • Citrix HDX RealTime Media Engine to optimize audio and video transmission for Skype for Business and Microsoft Teams
  • Microsoft RemoteFX for optimizing audio quality in conjunction with RDP
  • Microsoft RDSH, WTS from 2000, RDS, RD release, Citrix Virtual Apps & Desktops, VMware Horizon or web server
  • Connection to common gateway via IPsec, OpenVPN or HTTPS
  • Additional VPN clients: Cisco AnyConnect, Juniper, F5 (additional licenses may be required)
  • Profiles for accessing various applications/servers at user, group or role level
  • Use of local resources after approval (external USB storage devices, local printers)
  • Authorization assignment for external devices linked to manufacturer ID or serial number of the device
  • Remote update of all applications and firmware
  • Compatible with all common 64-bit PCs, largely with Intel-based Macs and tablets with x86 architecture
  • UEFI Secure Boot support
  • Keyboard drivers for more than 90 languages and countries
  • Multi-monitor support
  • Connection via LAN, WLAN, UMTS, LTE incl. browser for logging into the HotSpot
  • Software in German and English (can be preset)
  • Forwarding of external USB and LAN devices, e.g. for connecting an IP telephone
  • Automatic reconnect if the connection is lost or changed
  • Software certificate, linked to the hardware ID of the SBS and hardware anchor
  • Password entry on the screen
  • Write-protected and signed partitions for boot loader and kernel
  • Encryption via hardware of all security-relevant partitions
  • Write-protected and signed partition for firmware and applications
  • Writable partition for storing user parameters
  • Hardened ECOS Secure Linux operating system
  • Digitally signed boot loader, firmware and applications with validation in Chain-of-Trust
  • Integrated firewall to protect against attacks in the same network and block ping requests
  • Encryption of RAM contents down to the program code to be executed
  • VM Start Detection prevents use in a virtual environment
  • Fingerprinting of the guest computer including peripherals
  • Instant logout when unplugging the SBS
  • Secured process for updating firmware and applications with integrity check and correct update server
  • USB-A - 12 x 41 x 4 mm, 6g - ECOS SecureBootStick HE and carrying strap

Get in touch with us!

Our experts are happy to assist you.

Please enter your company email address!

The fields marked with (*) are mandatory and must be filled in.