ThinLinc is built to make secure systems. This is accomplished on several levels. The communication between the workstation and the server is secured against tapping, and encrypted. The server system is built for high availability and zero down-time. The centralization of applications means that security upgrades and virus protection is managed in one place, making these easier to oversee.

By using a directory service to authenticate user groups or individual users, the flow of information within and outside the organization can be secured to reduce the risk of leakage. ThinLinc supports the majority of the existing directory services.

Secure communication

ThinLinc uses OpenSSH to secure the communication between client computer and server. Instead of using IPSEC, which can be difficult to configure and can cause problems in the network, SSH creates a tunnel around the regular protocol and thereby encypts the content. In the SSH protocol there is built-in protection against tapping, which makes "Man-in-the-Middle" attacks impossible. OpenSSH supports a large number of encryption algorithms, with up to 256 bit encryption.

Availability

An important aspect of security pertains to availability. ThinLinc can be connected to form different kinds of clusters. The most common example is load balancing, where two or more servers are configured for optimal useage. Another example is a high availability cluster, where a backup machine takes over if the main server fails, to ensure the continued operation.

Sessions

Thanks to the session management in ThinLinc you are ensured against losing work if a workstation fails or the connection to the server is lost. Next time the user logs on, the work is still there, ready to be resumed, saved in the session on the server.