VerSec provides complete control, auditing and capture of the data transferred from endpoints via removable media and storage devices, transmitted in emails via Microsoft Outlook and uploaded to websites such as hotmail, yahoo mail, blogs, facebook etc via HTTP.
Click to enlarge Screenshots
)
Controlling Files that can be transferred, transmitted and uploaded
Whether or not a file can be transferred/transmitted/uploaded to or from the system is determined by the unique file type signature (e.g. block all MP3 files from being transferred/transmitted/uploaded) and/or its textual content (e.g. block all documents containing a social security number from being transferred/transmitted/uploaded).
The actual data transferred/transmitted/uploaded can also be securely captured for later analysis.
)
Policies can be configured to detect, capture and block probable pornographic images being transferred from endpoints as well as detect and capture such files stored on endpoint computer hard drives via automated and efficient file system scanning policy settings.
VerSec uses embed technology licensed from Fortium ICA Ltd. This world class Image Composition Analysis Filtering technology is independently certified as 95% accurate. The core engine comprises advanced algorithm based modules which combine their analysis of body, face, foreground, background, luminosity, shape, edge and texture to return values indicating the potential offensive nature of a scanned file.
)
Policies can be configured to index documents stored on endpoint computers at scheduled intervals. These indexes are then centrally consolidated and available for searching allowing the quick discovery of the location of sensitive documents stored unsecured on endpoint computers. Once found jobs can be created to automatically copy, move or encrypt the data.
)
Live Search
Polices can be configured to allow the real time searching of documents stored on endpoint computers. As matching files are found their existence is reported back to the management console where jobs can then be created to either copy, move or encrypt the file.
)
Print Auditing
Policies can be configured to audit all jobs sent to locally attached and network printers. Information audited includes who, when, to where and what was printed.
)
Software Encryption
Policies can be configured to enforce all transfers to removable media and storage devices to be encrypted. Settings such as the encryption algorithm to be used, the minimum passphrase length and whether complex passphrases are required can all be configured in a policy.
Kingston Technologies range of DataTraveler drives complement the data security features of the VerSec by providing password protected and hardware encrypted USB Flash drives.
Users can also be given access via policy to desktop encryption software that can be used to encrypt sensitive data on the endpoint. A context menu in Windows Explorer allow files to be encrypted, whilst simply double clicking a file will decrypt it.
Hardware Encryption and Device Password Protection
Guardian Technologies Group is an official Kingston Endpoint Management Technology Partner and Reseller. Kingston's range of DataTraveler drives complement the data exchange security features of the VerSec by providing password protected and hardware encrypted USB Flash drives. These drives are fully supported and recommended for use with VerSec.
VerSec features such as Override codes and Away policies allow the security policy to automatically adapt to the endpoints current environment ensuring a high degree of business continuity and enforced security.