Similar to Sun Ray Clients, Oracle Virtual Desktop Clients provide a stateless connection to the desktop session running in the server infrastructure, which users can access with or without smart cards. However, Oracle Virtual Desktop Clients do not provide many of the built-in security capabilities that the Sun Ray Clients provide, such as IPsec tunneling, VPN, 802.1x authentication, and network connectivity. Instead, these capabilities are provided by the platform on which the Oracle Virtual Desktop Client is running, so choosing a platform for an Oracle Virtual Desktop Client dictates the security capabilities available.
In fact, using the platform for the underlying client security can provide benefits beyond what the Sun Ray Client provides, such as expanded VPN capabilities. And, beyond security considerations, the platform can provide additional network connectivity options such as wireless or cellular.
Here are some additional security considerations for Oracle Virtual Desktop Clients:
Clipboard sharing - Clipboard sharing is the ability for the user to copy and paste text between an application running in an Oracle Virtual Desktop Client session and an application running on the local desktop. By default, this feature is disabled. For the copy and paste functionality to work, the clipboard service must be enabled on the Sun Ray server and clipboard sharing must be enabled on the Oracle Virtual Desktop Clients. You can use the utdevadm command or the Security page of the Admin GUI to enable the clipboard service. See How to Enable the Clipboard Service for Oracle Virtual Desktop Clients in the Administration Guide for details.
The clipboard service is not available on Sun Ray servers running Oracle Solaris Trusted Extensions.
Secure profile entries - By default, security-sensitive profile entries, such as the client key, are not shown in the profile file. If you deselect this check box in the Advanced tab, all profile file entries are shown in the profile file.