 |
|
|
|
| |
ControlGuard Endpoint Access Manager Implementation |
|
|
|
|
|
|
|
|
| |
Endpoint Access Manager secures the use of removable media and portable storage devices by:
• Preventing information leakage from PCs and laptops
• Defining and enforcing endpoint security policies
• Complying with regulations like HIPAA and SOX by monitoring and auditing endpoint activities
• Providing flexible access rules as well as USB lock and device lock capabilities
Endpoint Access Manager includes a Management Server, a Management Console and Endpoint Agents. The Management Server is deployed at a central location within the enterprise network. The Endpoint Agents are deployed seamlessly to the endpoints using standard enterprise distribution tools. The Management Server intelligently communicates information security policies to the Agents. The Agents enforce the policies, monitor endpoint activities and communicate back to the Management Server relevant data. The Management Console offers robust tools to display and report endpoint activities, including:
• Real-time notifications
• Audit logs stored in corporate databases
• Customized web-based reports
Typical ControlGuard Endpoint Access Manager
Implementation:
The Management Console displays endpoint configurations and reveals connected devices and media interfaces. Any I/O activity at the endpoint is immediately logged and displayed by the Management Console and is subjected to the appropriate information security policy enforced by the Endpoint Agent.
ControlGuard Endpoint Access Manager is the only endpoint security solution to offer management of all removable media, I/O devices and Communication Interfaces.
Examples include: internal and external modems, PDAs, iPods, network and local printers, MP3 players, tape devices, biotech devices, CD/DVDs, burners, memory sticks (USB flash drives), LAN adapters, camcorders, digital cameras, scanners, optical devices, smart phones, floppy disks, mass storage, SD Cards and zip/jazz drives. Communication Interfaces, such as: USB, WiFi, Bluetooth, PCI, ISA, optical beams, secure digital, PCMCIA, serial (COMs), parallel (LPTs), IrDA and FireWire.
The endpoint security policy can be limited to monitoring only, or to permitting a specific action on a specific set of devices by specific users.
The Endpoint Agents are intelligent and independent modules that remain active even when the endpoint is not connected to the network. They are protected from attacks by processes, services or other drivers, and cannot be bypassed by endpoint users, even if they have administrative rights on the endpoint.
Endpoint Access Manager tightly integrates with directory services, enterprise management systems, application infrastructure and distribution systems enabling easy deployment and minimal administration overhead. |
|
|
|
|
|
|
