| |
|
|
Overview
The Marshal EndPoint Security solution helps you
to extend your organization's data loss prevention strategy, by
managing and controlling connection of portable media devices to
company-owned PCs.
You can enforce your Acceptable Use Policies by controlling which
employees can connect all portable device types. You can also
monitor employee access to wireless networks.
The solution also provides your administrators with complete
visibility of all successful and unsuccessful attempts at device and
wireless connections and data transfers.
Marshal EndPoint Security helps protect your data, both on and
off the network:
- Prevention - Prevents the transfer of files
to or from unauthorized portable devices
- Protection - Automatically encrypts data
copied to approved devices
- Visibility - Provides complete visibility
of device and file accesses on the network
- Flexibility - Provides granular control
over who has access to what devices and for how long
Benefits
Device Control
- Marshal EndPoint Security prevents the unwanted
transfer of data to or from portable devices - such as
USB flash drives, iPods, PDAs and even CDs - by
automatically enforcing security policies. User access
can be blocked, limited to read-only or left
unrestricted according to the individual's security
privileges and device type in use.
Encryption
- Marshal EndPoint Security can automatically encrypt
all data copied to authorized storage devices such as
USB flash drives. Using the latest Blowfish and AES
256-bit ciphers, Marshal EndPoint Security ensures that
even if data is lost in transit, it won't create a
costly and embarrassing security breach.
Access Auditing
- Marshal EndPoint Security provides complete
visibility of all user and administrator actions,
recording everything from individual device connections
to the most popular files accessed on portable devices.
A full audit trail of administrator actions helps ensure
compliance with security management policies.
Regardless of whether the device is connected locally or
wirelessly, if the PC is on the corporate network or
offline, Marshal EndPoint Security constantly manages device
connections to ensure the integrity of your network is not
compromised.
Features
Marshal EndPoint Security offers a wide spectrum of Content
Security features. EndPoint Security helps you to Secure
your network environment, Protect your organization
and users, and Comply with law and regulations
affecting electronic communications.
Device Control - Prevent the unwanted transfer of data to or from portable
devices
- Marshal EndPoint Security actively manages the
connections that can be used to move files to and from the
PC. Many common device types are managed by default, such
as:
- USB and Firewire Ports
- LPT and COM Ports
- Internal and external floppy drives
- Internal and external CD and DVD drives
- WiFi, Bluetooth and Infrared wireless connections
- For those occasions where a greater level of granularity
is required, Marshal EndPoint Security enables authorized
administrators to create new classes based on specific makes
and model of device.
- For example, by creating a custom security policy it is
possible to deny use of all USB flash disks except a
particular type of secure device provided by the company to
senior managers. Using this feature, Marshal EndPoint
Security can also be used to manage additional device types
such as local printers, PCMCIA cards and even internal
modems.
Encryption - Automatically encrypt all data copied to authorized storage
devices
- To ensure that data legitimately copied onto a USB flash drive doesn't end up in the wrong hands,
Marshal Endpoint Security offers the option to encrypt files as they are transferred. The encryption
process is transparent to end users and has no negative effects on employee productivity.
- Using a choice of industry-standard 256-bit AES and Blowfish encryption ciphers, Marshal Endpoint
Security can transform any USB flash drive into a secure means of transporting sensitive company and
customer information.
- You can choose to apply either a global or personal key to the encrypted data. This option determines
whether the data can be read by any company-owned PC carrying the organization's unique keycode,
or whether the user will need an additional password to retrieve files.
- Encrypted disks cannot be accessed by PCs outside the organization. Files cannot be accessed on
non-authorized systems or networks.
Auditing - Review all user and administrator actions
- A comprehensive suite of tabular and graphical reports make it easy for administrators to get both
a high-level view of device activity on the network and detailed forensics on file movements. Marshal
EndPoint Security automatically monitors all device connections, reporting back vital information
such as device class, user, PC, time of connection and whether the connection was blocked or allowed.
What's more, you don't need to trawl
through hundreds of log files to get the information you need - it's
all presented in a user-friendly graphical report which can be
shared with senior management.
- All attempted (both successful and blocked) file accesses
are recorded and reported back to the Control Center. This
allows managers to see which files are being read, renamed,
deleted and copied to portable storage devices.
- Administrators can search on file name, file type, user,
time, PC and whether the action was allowed or blocked. To help
provide focused forensics, Marshal EndPoint Security can be
configured to only report on certain file types or actions.
- Just as Marshal EndPoint Security provides vital information on user behavior, it also collects important forensic data in the form of administrator actions. As such, whenever a policy is modified or deployed to a PC, or temporary access granted to a user, Marshal EndPoint Security automatically records this in the main administrator log.
- All Marshal EndPoint Security logs and audit trails can be exported in CSV format for further processing in third-party reporting tools.
Security Administration -
Create, deploy and report on policies from a single Control
Center
- With its intuitive policy creation wizards and seamless
integration with Active Directory, Marshal EndPoint Security
makes it easy to set and apply policies. Administrators
simply choose the type of device they want to manage and
then assign rights to individuals and groups already created
on the network.
- Marshal EndPoint Security policies can be deployed
across the organization without the need to leave the main
Control Center. Whether deploying to a single computer, IP
range or entire network, new and updated policies can be
pushed-out instantly.
- Marshal EndPoint Security features a built-in suite of
log-style and graphical
reports which make it easy for administrators and
managers to track all device connections and attempted data
transfers.
- All other major features such as Temporary Access and
Encryption settings can also be access directly from the
main Control Center.
System Requirements
Server
| Processor: |
Pentium Class |
| Memory: |
Minimum 128MB |
| Disk Space: |
Minimum 512MB |
| Operating System: |
Microsoft Windows 2000, XP, 2003 (32-bit editions) |
Network Environment
- Apache Web Server (supplied) or Microsoft IIS 5.0+
- Marshal EndPoint Security requires a domain-based Windows
network
- Active Directory is recommended, but not required
Clients
| Operating System: |
Microsoft Windows NT (SP6), 2000 (SP4), XP, 2003
|
| Hardware Requirements: |
Marshal EndPoint Security will work on any machine
capable of supporting the above operating systems |
| Database: |
Marshal EndPoint Security is shipped with a default
installation of MDSE which is the recommended database.
SQL is supported for customers who prefer this format. |
|
|
Marshal Software Ltd.
Marshal is the global leader in
Integrated Email and Internet Content Security solutions. More than
seven million users in 18,000 companies worldwide use Marshal's
highly acclaimed MailMarshal and WebMarshal solutions to protect
their networks, employees, business assets and corporate reputation
and to comply with corporate governance and legislation
requirements.
|
|
.png)
