DeviceLock®
STOP DATA FROM SLIPPING THROUGH
YOUR FINGERS
  

Español
    Products     Purchase     Downloads     Partners     Support     Company     Contact Us     Site Map  

Press Room: Article

Case Study
Stahl Locks the Side Doors with DeviceLock®

DeviceLock® ensures that users cannot simply download data from the network and copy it to USB sticks, laptops and other mobile equipment. Stahl operates an internally developed system for granting authorisations. Employees are assigned to groups and, depending on the group, they may or may not be allowed to read or read and write on removable discs. Those who are not a member of a group are automatically denied all access. Ultimately approval must be given on three levels, on the basis of a workflow model. It is only when the employee's own manager, the local IT coordinator and the 'object owner' (which can be a shared file, an application or a group) have given their permission that the employee is assigned to a group and granted access to the active directory environment.

Learn more>>

contactssite map
 
www.devicelock.com
/
Press Room: Article

Corporate security: risks of the insiders attack

Corporate security is an important issue for every company, no matter how large or small. However, the nature and focus of corporate security have changed dramatically in the last 10 years. Most current businesses use digital technologies, computers, e-commerce solutions, wireless devices and other recent innovations to run more efficiently.

Unfortunately, these also pose a threat to system integrity with security breaches being reported regularly. The focus of corporate security is changing to include these new ways of doing business, and so has the budgets of security departments and agencies. In fact, billions of dollars are spent each year on electronic corporate security solutions intended to fight off hacker attacks. However, what most people fail to realize is that:

  • statistically over 80% of security breaches are caused by insiders - most often employees.

  • more than 20% of attacks on the corporate WEB sites are coming from the inside!

  • almost 30% of companies, experience more than 5 attacks from the inside per year.

Usually, the goal of intrusions is to obtain valuable information, databases, research data, sales reports, marketing statistics, HR records, etc. The information can be sold and/or used by the perpetrators. Once information is located and duplicated, there are two ways to "carry" it out. The first is to transfer it via the Internet. The second is with physical media: floppies, CDs, external drives (ZIPs, USB drives, and many others), etc.

Unfortunately, standard access control solutions coming with Windows operating systems do not allow the assignment of permissions for floppy drives, CD-ROMs, other removable devices and for network connections on a per user basis.

Moreover, USB and FireWire ports are open by default so anyone can bring and plug a tiny device and download hundreds of megabytes of proprietary information.

There are two approaches to solve this problem. The first way is to cut off Internet access and remove all devices that can be used to transfer information (floppy drives, external drives, etc.) This approach is expensive, difficult and impractical for the majority of companies. The alternative is inexpensive software solutions. There are very few such solutions on the market right now and only two or three that deserve attention.

DeviceLock from DeviceLock, Inc. is a one solution that gives network administrators control over which users can access what devices (floppies, USB, FireWire, infrared, serial and parallel ports, Magneto-Optical disks, CD-ROMs, ZIPs, etc.) on a local computer. You do not need to physically remove, uninstall or block any hardware. All you need to do is install the software and assign the appropriate privileges to each user. What you get is full control over which users or groups can access devices depending on the time of day and day of the week, protection against accidental or intentional disk formatting, viruses, Trojans and other malicious programs that are frequently introduced from removable disks.

PortsLock, also created by DeviceLock, Inc., gives you protection behind a firewall. While most companies are obsessed about possible hacker attacks, Network World reports that between 80 and 90 percent of security breaches originate from within the corporate firewall. An average security breach costs almost a million dollars.

Once PortsLock is installed, administrators can assign permissions to TCP/IP connections, just as they would in managing permissions on an NTFS partition of a hard disk. It lets you control which users can access what TCP/IP based protocols (HTTP, FTP, SMTP, POP3, Telnet, etc.) on a local computer, depending on the time of day and day of the week. You can also set allowed/denied TCP/UDP ports and IP addresses for incoming and outgoing connections. The essence is that users do not set up rules in their applications to use the network. Only administrators are allowed to set rules so users without administrative privileges cannot bypass the PortsLock security. What's also important is that PortsLock works perfectly fine alongside other personal firewalls and routers installed on the same computer.

While no software solutions can completely eliminate risks, the combination of DeviceLock and PortsLock significantly reduces the vulnerability of your network to attacks both from outside and from within. These applications were extensively tested in corporate environments and are being relied on by many companies around the world. They win respect and recognition from system administrators and IT security professionals who employ them.

Being extremely user friendly, it does not require administrators to pore over help manuals just to learn how to use these programs effectively.

Our products help hospitals to achieve HIPAA compliance and operate in a secure environment.
Did you know?
You can't manage WiFi, Bluetooth, USB and FireWire devices via Group Policy!
Did you know?
Anyone can bring and plug the USB Watch or MP3 Player and download hundred megabytes of proprietary information and upload potentially harmful software or viruses.
Related articles