Security Assessment of Microsoft DirectAccess

March 14, 2016 (at 3:30 p.m.) in Day 1 Track 2

Virtual Private Networks (VPNs) are used in many environments to allow the users to securely access their internal resources, which are not accessible otherwise. Starting from Windows server 2008, Microsoft introduced an IPv6-only VPN technology called DirectAccess, which allows users with specific versions of Windows operating system to remotely, seamlessly and securely connect to their internal network resources. Moreover, unlike the traditional VPN solutions where remote users are obligated to enter some credentials in order to establish a secure connection to their internal networks, DirectAccess lifts this weight off user’s shoulders. Instead, DirectAccess automatically builds the secure connection to the internal resources by relying on different technologies such as Windows domain group policies, public

Ali Hardudi

Ali Hardudi works as a Security Analyst at ERNW and generally his main focus is on web application and network security. In addition to his Master of Science in Information and Telecommunication Technology MSITT major in Security that he received from Athens Information Technology AIT in Greece, Ali just finished his second master degree in Communication and Media Engineering CME from the University of Applied Sciences Offenburg.