Keeper Security Enhances Privileged Access Management with Advanced Remote Browser Isolation Features
Keeper Security has recently unveiled significant enhancements to its Privileged Access Management (PAM) system by integrating new capabilities for Remote Browser Isolation (RBI). This state-of-the-art update is designed to dramatically enhance usability and adoption rates in modern web workflows, particularly during privileged vault sessions. These improvements specifically address a longstanding challenge within zero-trust environments: providing secure, policy-driven access to dynamic, multi-tab web applications and file-based workflows.
By facilitating multi-tab browsing, secure file uploads, and full JavaScript interaction, Keeper is effectively bridging the divide between heightened security measures and user productivity during remote, browser-based access. This is particularly crucial as organizations continue to adopt increasingly complex digital operational structures.
In addition to the RBI enhancements, Keeper Security is expanding its AI-powered session monitoring abilities to encompass additional protocols, including RBI. The technology, known as KeeperAI, continuously analyzes, summarizes, and evaluates activities in real time, effectively detecting anomalous behavior while ensuring that users remain within the scope of their assigned privileged tasks.
Craig Lurey, CTO and Co-founder of Keeper Security, emphasized the pressing need for these updates in a recent statement. He noted that many organizations have opted to implement remote browser isolation selectively due to the limitations imposed by traditional RBI solutions. These conventional systems often break modern web workflows, prompting users to circumvent security controls when tasks become cumbersome. Lurey further remarked, “Keeper’s updates remove the most common challenges to ensure users have a seamless experience while enabling continuous monitoring and intelligent threat detection across every privileged session.”
The integration of RBI within KeeperPAM guarantees secure, efficient, and VPN-less access to both cloud-based and internal web applications directly from the Keeper Vault. By hosting browsing sessions within a controlled remote environment, RBI effectively isolates web browsing activities from end-user devices. This significantly mitigates the risks of data exposure, especially should a device become compromised. Moreover, all session activities are seamlessly integrated into Keeper’s privileged access workflows, ensuring centralized visibility, auditability, and AI-driven risk analysis.
Historically, RBI solutions have imposed considerable usability constraints, often leading users to bypass controls when workflows become too restrictive. However, the latest upgrades to RBI within KeeperPAM directly tackle these challenges head-on.
One notable feature of the new update is the introduction of multi-tab support within RBI sessions. Users can now open and navigate multiple tabs within a single isolated browser session, allowing for uninterrupted interaction with modern web applications. This advancement is designed to support workflows that rely heavily on pop-ups, redirects, and Single Sign-On (SSO) capabilities, all without requiring users to restart sessions or compromise isolation boundaries.
The new upgrades also encompass full support for native JavaScript alerts, prompts, and confirmation dialogs, ensuring that web applications perform as expected. Users can now suppress excessive or malicious alert loops, retaining control over web pages that may malfunction.
Continuous monitoring of these sessions is made possible by KeeperAI, enabling security teams to verify that user actions align with designated workflows. This real-time analysis is invaluable in detecting any potential misuse or unauthorized activities.
Additionally, KeeperPAM has introduced administrator-controlled file uploads through Remote Browser Isolation. This addresses a common limitation that often forces users to operate outside of protected environments. When explicitly enabled by administrators, users can upload files to approved websites directly within an isolated session, thereby supporting essential workflows like document submissions and web-based collaboration. By default, these file uploads are disabled and must be intentionally authorized, reinforcing Keeper’s commitment to its least-privilege security model.
This feature is particularly advantageous for organizations looking to securely access high-risk or externally hosted web platforms, all while shielding themselves from potential malware exposure, data leakage, or credential compromise on local devices.
The Remote Browser Isolation capabilities are fully integrated within KeeperPAM, Keeper’s cloud-native privileged access management platform, and the solution can also be deployed as a self-hosted, on-premises option. The session management technology behind this innovative approach was developed by the original creators of Apache Guacamole, which enables quick, agentless access to infrastructure, web applications, and isolated browsing sessions while providing full session recording and zero-knowledge encryption.
By enhancing remote browser isolation to accommodate the needs of users, Keeper continues to show that robust security measures do not need to compromise usability or productivity. As zero-trust architectures evolve, it is essential for security controls to align with real-world workflows, rather than forcing users to make exceptions.
These groundbreaking enhancements to RBI within KeeperPAM will be available in the upcoming weeks in Gateway 2.24 and Keeper Vault 17.6, offering organizations advanced capabilities for secure digital interactions.