Worldwide, a large and growing number of businesses and government agencies rely on ScreenMeet Support Software-as-a-Service (SaaS) to streamline business processes for customer support.
ScreenMeet Support makes security the top priority in the design, deployment, and maintenance of our network, platform, and applications. Consequently, ScreenMeet Support is prepared to operate in even the most stringent and secure computing environments.
Understanding the security and design parameters of ScreenMeet Support and the underlying communications infrastructure is an important component.
The following document provides detailed information on the security infrastructure for ScreenMeet Support support sessions from the agent browser, to the cloud infrastructure, and to the end-user desktop. In addition, it describes the oauth process as well as data storage and retention policies.
In accordance with best security and functionality practices, please ensure your network is configured properly, and install and maintain the most up-to-date version of your browser and OS.
Important: In order to ensure Screenmeet/ScreenMeet Remote Assist works per specification, the following network configurations are needed:
-Whitelist “*.screenmeet.com” and “*.scrn.mt” for port 443 via TCP and UDP
You may check your network configuration with our validation tool available here.
ScreenMeet Support supports the following browsers and versions for Agent use in support sessions:
The ScreenMeet Support client supports the following OS and versions on end user devices:
Windows: 7, 8 , 10, 10S
Linux (available Q1 2020): Ubuntu 18.04.3+, Redhat 7.6+
Windows Server: Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016
Globally deployed across multiple cloud hosting providers, ScreenMeet Support uses docker for simple and scalable deployment operations.
Least Busy Architecture
ScreenMeet Support is designed to utilize the scalability and geographic distribution of its architecture. This means that as Edge servers are brought on-line, the multitenant ScreenMeet Support architecture scales logically. Sessions are assigned to the geo-located least busy resource. Session data from the end-user’s device is routed to the agent’s browser instantly across this architecture and deleted promptly after transmission.
ScreenMeet Support uses standard server instances across multiple cloud providers. ScreenMeet Support is hosted in AWS and Google cloud data centers around the world in North America, Europe, Asia, India, and Australia. ScreenMeet Support does not have physical access to these sites.
ScreenMeet Support maintains a process for remote access which is a privileged access management solution on systems containing customer assets. ScreenMeet Support access management solution includes:
All data throughout operation of the ScreenMeet Support application is SSL encrypted using TLS 1.2 transport security with AES-256-bit encryption. This covers all data transmitted from the remote device to our web servers and from our web servers to the Agent browser and conversely.
Further, each session is assigned a unique, 1 time key used to bridge the gap between the Agent and the end user. Finally, on PCs, the application auto-deletes after each session so there is no possibility for further access without the end users’ consent and intent.
During a ScreenMeet Support session, data is temporarily written to memory, then sent to the remote Agent’s browser and then deleted. No data is permanently stored or retained on the end user or Agent’s device.
Encryption Key Management
ScreenMeet Support's strong encryption key management practices include:
All session data is transported as SSL encrypted using TLS 1.2 transport security with AES-256-bit encryption. Rather than using firewall port 80 (standard HTTP Internet traffic) to pass through the firewall, ScreenMeet Support uses firewall port 443 (HTTPS traffic).
All application traffic uses a secure connection over HTTPS (port 443). There is no firewall configuration that is required for any user.
No session information is retained on the end user’s computer or by ScreenMeet Support. All relevant data is written to the Salesforce case. Also, any files that are transferred or recordings that are made are also written to the Salesforce cloud.
ScreenMeet Support lets you use your existing Salesforce credentials. You can oauth in via the Service Cloud app.