DeviceWall: Device Control
   

To guard against the risks associated with unauthorized device connections and data transfers, DeviceWall actively manages the connections that can be used to move files to and from the PC, such as:

    USB & Firewire Ports
    LPT & COM Ports
    Internal & external floppy drives
    Internal & external CD and DVD drives
    WiFi, Bluetooth and Infrared wireless connections

Creating Device White Lists

For those occasions where a greater level of granularity is required, DeviceWall enables authorized administrators to create new classes based on specific makes and model of device.

For example, by creating a custom security policy it is possible to deny use of all USB flash disks except a particular type of secure device provided by the company to senior managers.  Using this feature, DeviceWall can also be used to manage additional device types such as local printers, PCMCIA cards and even internal modems.

DeviceWall: Auditing
DeviceWall enables organizations to base security policies on a thorough understanding of what’s happening on the network.  A comprehensive suite of tabular and graphical reports make it easy for administrators to get both a high-level view of device activity on the network and detailed forensics on file movements.

Device Connections

DeviceWall automatically monitors all device connections, reporting back vital information such as device class, user, PC, time of connection and whether the connection was blocked or allowed.
What’s more, you don’t need to trawl through hundreds of log files to get the information you need – it’s all presented in a user-friendly graphical report which can be shared with senior management.

File Accesses

All attempted (both successful and blocked) file accesses are recorded and reported back to the Control Center. This allows managers to see which files are being read, renamed, deleted and copied to portable storage devices.

Administrators can search on file name, file type, user, time, PC and whether the action was allowed or blocked.    To help provide focused forensics, DeviceWall can be configured to only report on certain file types or actions.



Administrator Actions

Just as DeviceWall provides vital information on user behavior, it also collects important forensic data in the form of administrator actions.   As such, whenever a policy is modified or deployed to a PC, or temporary access granted to a user, DeviceWall automatically records this in the main administrator log.

Exporting

All DeviceWall logs and audit trails can be exported in CSV format for further processing in third-party reporting tools.

DeviceWall: USB Encryption   

To ensure that data legitimately copied onto a USB flash drive doesn't end up in the wrong hands, DeviceWall offers the option to automatically encrypt all files as they are transferred from the PC. The encryption process is transparent to end users and has no negative effects on employee productivity.

Using a choice of industry-standard 256-bit AES and Blowfish encryption ciphers, DeviceWall can transform any USB flash drive into a secure means of transporting sensitive company and customer information.

Further flexibility is provided by DeviceWall’s ability to apply either a global or personal key to the encrypted data – which determines whether the data can be read by any company-owned PC carrying the organization’s unique keycode, or whether the user will need an additional password to retrieve files.

DeviceWall-encrypted disks cannot be accessed by PCs outside the organization – preventing files from being accessed on non-authorized systems or networks.

DeviceWall: Temporary Access

For those inevitable occasions when users will require access to normally-blocked devices, DeviceWall features a unique temporary access tool which works both online and offline.   

Granting time-limited access

DeviceWall makes it easy to both react to, and pre-empt, special requirements to use blocked device classes by granting temporary access for named users.

For staff planning a road-trip where they know they will need access to CDs or other restricted media, administrators can plan for this in advance by pre-deploying a temporary access policy to the PC.   Even though resident on the PC, this new set of permissions will not come into force until the stated date and will automatically revert back to the normal security policy after the set time period.
Managing offline exceptions

For urgent requirements where the user’s PC is not connected to the network, DeviceWall allows temporary access to chosen devices classes through a unique and secure verbal key exchange process.

The combination of an effective security mechanism plus the capability to handle one-time exceptions means that DeviceWall is the ideal solution for organizations looking to protect the integrity of the network with affecting business productivity.

The process of granting temporary permissions creates an audit log entry which records the person to whom one-time privileges were given, what type of device was unblocked and why. The audit log is time-stamped and maintained for subsequent review.

DeviceWall: Simplified Administration

DeviceWall increases the effectiveness of security efforts by being incredibly simple to manage, enabling authorized administrators to create, deploy and report on policies from a single Control Center.

Policy Management

With its unique policy creation wizards and seamless integration with Active Directory, DeviceWall makes light work of setting and applying policies. Administrators simply choose the type of device they want to manage and then assign rights to individuals and groups already created on the network.

Deployment

Unlike other solutions, DeviceWall’s policies can be deployed across the organization without the need to leave the main Control Center.  Whether deploying to a single computer, IP range or entire network, new and updated policies can be pushed-out instantly.

Reporting

DeviceWall features a built-in suite of log-style and graphical reports which make it easy for administrators and managers to track all device connections and attempted data transfers.

All other major features such as Temporary Access and Encryption settings can also be access directly from the main Control Center.

DeviceWall: User Education

DeviceWall allows organizations to choose if the solution should run in the background, simply stopping the connection of unauthorized device types, or whether they want to proactively remind users of the security restrictions that apply to them.

In ‘silent’ mode, DeviceWall runs with no user alerts or notifications (other than standard Windows dialogues). In ‘high visibility’ mode, DeviceWall notifies users of their privileges both at log-on and if an attempt is made to connect a blocked device.

DeviceWall Content Aware Edition (CAE)

DeviceWall CAE is the first solution of its type to combine the power of device management with advanced content filtering technologies.

In addition to managing the presence of USB sticks, MP3 players, mobile phones and other devices on the corporate network, DeviceWall CAE provides an extra layer of security by giving administrators an accurate view of exactly what data is being copied to and from authorized devices.

DeviceWall CAE’s content filtering abilities allow it to determine the true nature of any data file, even if the file extension or properties have been altered in attempt to bypass security measures.

This is critical both to preventing sensitive information leaving the network, but also in protecting systems against the accidental or deliberate introduction of malicious code.