 |
|||||
 |
This is the central Hover Menu
|
 |
|||
 |
 |
||||
 |
|||||
 |
 |
||||
 |
|||||
 |
|
|
|
|
|
|
|
|||||
|
|
This is the central Hover Menu
|
|
|||
|
|
|
||||
|
|
|||||
|
|
|
||||
|
|
|||||
|
|
|
|
|
|
|
|
||||||||||||
| Default Text | ||||||||||||
|
||||||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
The proliferation of data loss due to the inappropriate or sometimes criminal use of removable media devices has reached alarming levels. According to recent security reports, 75 percent of Fortune 1000 companies fell victim to data leakage in 2006, with an average cost of recovery that exceeded $5,000,000.
Sanctuary Device Control eliminates data loss from removable devices through the policy-based enforcement of device use to control the flow of inbound and outbound data from your endpoints. Positive Approach to USB Security Hardware such as USB memory sticks, FireWire external hard-drives, scanners, music players, digital cameras, PDAs, and CD/DVD burner drives are scattered throughout offices around the world. Their proliferation amplifies the threats posed by outsiders or users who plug in devices that could compromise the security of sensitive data. By employing a whitelist approach, Sanctuary enables only authorised devices to connect to a network, laptop or PC - facilitating security and systems management, while providing the necessary flexibility to the organisation. Simple, Fast, Flexible Administration and Management Sanctuary enables administrators to quickly establish and enforce device control policies by rapidly identifying devices and then assigning permissions at a high level or all the way down to specific application per users, user groups or even a particular computer. Policies are also enforced by time constraints, encryption, volume of data, data transfer and much more criteria. Sanctuary links device policies to user and user group information stored in Microsoft Active Directory or Novell eDirectory and has also been ported to Windows Embedded platforms in addition to traditional Server and Desktop Windows OS, dramatically simplifying the management of endpoint application resources. Sanctuary controls the use of a vast range of devices that are key sources of security breaches, and manages and audits device usage according to their type and not on how they are connected. If needed, Sanctuary Device Control can be set to completely block USB ports or any other port (Bluetooth, FireWire, IrDA, WiFi, etc.) or prevent access to any device category independently from the way users are attempting to connect them. Granular policies also allow for access rights (R/W) down to unique device model or identifiable unit per user or user group. USB Security Built to Scale With a three-tier architecture and load-balancing capability, Sanctuary is designed to provide USB security to organizations ranging in size from 50 to 100,000 endpoints. Through integration with Active Directory or eDirectory, Sanctuary integrates with your existing technical infrastructure and logical organization. Sanctuary has also been ported to Windows Embedded platforms to protect the growing number of exposed embedded devices. Comprehensive Security and Auditing Capabilities for USB Devices Lumension Security Patented Shadowing I/O bi-directional technology tracks information as it is read from or written to floppy, CD/DVD and removable devices, and provides a comprehensive audit log of every event whether allowed or attempted - including those by unauthorized code and all writes to removable media and specific ports. Optionally, a full copy of the data written to or from a device can be captured and retained as well. Not only is an audit log invaluable in measuring and enforcing policy compliance, it also bundles the information you need as proof of compliance with a number of governmental regulations such as the Sarbanes-Oxley Act of 2002 (SOX), the Gramm-Leach-Bliley Act (GLBA) or the Health Insurance Portability and Accountability Act (HIPAA). To accommodate organisations' different endpoint policy, auditing and enforcement requirements, Sanctuary Device Control is available in a modular way:
Sanctuary Device Control - Audit Only
Focusing on audit and reporting requirements to comply with regulatory requirements or internal policies, Sanctuary Device Control - Audit Only provides extensive auditing & reporting features:
Sanctuary Device Control - Base
Sanctuary Device Control - Base includes the audit and reporting features of Sanctuary Device Control - Audit Only and adds on top of these all enforcement features of our award-winning policy enforcement product, including access attributes; device management; enforcement by class, sub class, device level, etc.; administrative roles, etc. *Note that this module does not include removable media encryption features.
Sanctuary Device Control - Enterprise For organizations that need the entire set of the above mentioned modules, Sanctuary Device Control Enterprise provides within a unique bundle the full feature set enabling auditing, reporting, enforcement and encryption features of our product. Sanctuary Device Control - Encryption Add-On
This is an add-on module to Sanctuary Device Control - Base (which is therefore a prerequisite to this add-on). Management of unique and encrypted devices offers the possibility to encrypt memory keys (AES-256) and thereby to uniquely identify them. The media authoriser module provides the capability to authorise a specific removable device to a particular user. The module specifically allows the encryption and protection of data stored on removable media.
Certifications
Whitepapers
 Endpoint Security Strategies Part II How to Effectively Protect Data in Transit and Assure Governance with NHS Directive PC on a Stick - A Portable Endpoint Security Nightmare Power User vs. Local Administrator Putting Security in a Positive Light Sanctuary & BS77799-ISO17799 Compliance Securing Data at the Endpoint - Four Steps to Protect Your Enterprise from Data Leakage The Total Economic Impact of Lumension Security’s Sanctuary Application and Device Control Articles  10 Ways to Get Users to Follow Security Policy Enterprises ignoring data security and privacy THINK-Endpoint Security Case Studies
 Australian Aerospace Allgemeine Bausparkasse (ABV) Antenne Radio Arkansas State Medical Board Barclays Bank Berliner Verkehrsbetriebe Bishop's Stortford College City of Lake Forest CSC & Anglian Water DIAKO Diakoniekrankenhaus Rotenburg EC Suite.com First National Bank of Bosque County Hamilton Osborne King ING DiBa John C. Lincoln Health Network Martin Fletcher Nevada Office of Veterans Services Ophir Optronics South London & Maudsley (SLaM) South Western Federal Credit Union Stephenson Harwood The Salvation Army Victory Challenge Compliance Documents BS77799-ISO17799 Compliance PCI Compliance Basel II Compliance Gramm-Leach-Bliley Act (GLBA) Compliance OMB M-06-16 Compliance HIPAA Compliance Testimonials  "Wests Ashfield identified the potential vulnerability that USB devices posed to our network during a regular security audit of our network. The USB devices posed not only risks in terms of theft of sensitive data, but also posed a threat to the general security of our network. Windows natively was unable to provide a workable solution to ensure that we could lock out the users we did not want to have access to certain devices, but also to easily manage those who we wished to allow access to devices. Sanctuary provided the solution. It allowed for us to control the use of not only USB devices within our network, but also every other device used within our network. Our network is quite complex with many unusual devices being used in a large computing, security, and Point of Sale environment. Sanctuary was able to handle all of our devices with ease, from CD/DVD drives to USB devices, even to Blackberry’s. We now enjoy the benefits of a highly secure network environment, which is protected from malicious damage both internal and external to the organisation. Our data is also more secure and we are able to confidently state that we are aware of any data which is transferred from our main systems. I have no hesitation in recommending Sanctuary to any organisation, and would go one step further to suggest that it is a must for any IT Manager concerned about ensuring the integrity of their network security." Steven Torresan, IT and Business Solutions Manager, Wests Ashfield Client (32-bit unless specified) - Windows 2000 (SP 4+) Professional, Windows XP Professional, Windows XPe, Windows Embedded Point of Service, Windows XP Tablet PC Edition, Windows Vista (32 and 64 bit)
Database - Windows 2000 Server (SP 4 or later) or Professional, Windows XP Professional (SP2 or later), Windows Server 2003 SP1 or SR2 (32-bit) or Vista (32-bit) Server -Windows 2000 Server (SP 4 or later) or Windows Server 2003 SP1 or SR2 (32-bit) Management Console - Windows 2000 Professional (SP 4 or later), Windows XP Professional (SP2 or later), Windows XPe SP2, Windows Embedded for Point of Service (WEPOS) SP2, Windows XP Tablet PC Edition SP2 and Vista (32-and 64-bit versions)
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
