Key Components

User Access Layer

• Universal Browser Support: Works with standard browsers (Chrome, Safari, Firefox, Edge) - no specialized enterprise browser required
• Device Agnostic: Functions on managed endpoints, BYOD, mobile devices, and thin clients
• Identity Integration: Seamlessly connects with existing SSO providers including Okta, Microsoft Entra ID, Google, and Active Directory

Users access a secure portal displaying only authorized applications, with no client software installation needed.

Sonet Elastic Cloud

• Display Rendering Engine: Our patented rendering technology streams application interfaces to browsers
• Elastic Compute Environment: Runs client-side components in isolated containers that scale automatically based on demand
• Security Control Plane: Implements zero-trust access controls, app air-gap protection, content inspection, and behavioral anomaly detection
• Visibility Engine: Provides comprehensive user activity logging, session recording, and analytics dashboard with SIEM integration

Application Connectivity Layer

Sonet.io connects to your applications without requiring migration:

• SaaS Applications: Direct integration with enhanced zero-trust security
• Hosted Applications: Connects to applications in public/private clouds, including legacy Windows and GPU-intensive workloads
• On-Premises Applications: Lightweight Docker connector with outbound-only connections
• Server Access: Browser-based SSH and RDP capabilities with built-in privileged access management

Technical Data Flow

1. User authenticates via browser using existing SSO credentials
2. Sonet.io validates identity and enforces access policies
3. Secure session created in elastic cloud when accessing applications
4. Application interface rendered and streamed to user's browser
5. User interactions processed through security layers
6. All activity logged and monitored in real-time
7. No data remains on user's device when session ends

Security Architecture

Our zero-trust security model includes:

• Authentication: MFA and continuous session validation
• Authorization: Granular access controls based on identity and context
• Air-Gap Protection: Complete isolation between devices and application data
• Data Protection: All data encrypted in transit and at rest
• Session Security: Watermarking, screen capture prevention, and clipboard controls
• Audit Trail: Comprehensive logging and optional session recording