Productive and Safe use of Devices

To allow such device use it is necessary to have granular control over who can use which device on corporate computers.  Windows does not give administrators this type of granular control, creating the need for specialized software solutions.  DriveLock™  can help you secure your data in a number of ways.

Comprehensive Device Support

To be effective, any device control solution has to be comprehensive. While USB is the most common port type today, other connectivity methods, such as FireWire, pose similar challenges. Device control mechanisms must be able to differentiate between different types of devices so administrators can, for example, allow the use of USB keyboards while preventing the use of music players. DriveLock™ can selectively allow or deny access to virtually any device that can be attached to a computer.

Granular Control

Not everyone in an organization has the same requirements for legitimate device usage. For example, a mortgage company may determine prohibit call center employees from using mobile storage devices to prevent the theft of customer data, but help desk personnel may need to copy driver files from a flash drive to the help desk computers. A small company may perform a daily backup of local data to a portable hard drive every evening but does not want to allow the use of other portable storage. DriveLock can differentiate between devices by manufacturer, model, or even serial number, and it allows administrators to allow or deny device usage based on device, user, time of day, or a number of other factors.

Data Protection

Many employees have a legitimate need to copy data to a mobile device. One employee may use a USB stick to give a file to a business partner. Another employee may use a portable hard drive to take files with her to work on them at home. DriveLock™ not only makes this possible, it can also ensure that the loss of a storage device does not result in data disclosure. You can even configure it to automatically encrypt the data so that someone who finds a lost device cannot access the data. You can configure DriveLock™ to be completely transparent to users and give easy authenticated access to the data even on computers that are not managed by the organization such as employees’ home computers.

Monitoring

The ability to monitor how devices are used and what data is copied to and from these devices is a crucial requirement for all but the smallest organization. Many organizations face regulatory requirements that require them to notify customers and clients when personal data may have been compromised, even when this involves no confirmed misuse. The ability to show that the lost data was encrypted can eliminate the notification requirement and the associated cost and loss of reputation. DriveLock’s monitoring is comprehensive, flexible, and includes detailed information about device usage and the copying  files.

DriveLock™ can even keep “shadow copies” of data that is copied to and from mobile devices for evidence.

Network Control

Employees who connect their computers to unauthorized networks, especially wireless networks outside the organization, pose a real and serious threat to your data. DriveLock™ lets you decide which networks users are allowed to connect to and what protection levels are enforced on each authorized network. Administrators can also prevent users from simultaneously connecting to a wired and a wireless network by simply selecting a single checkbox.

 

Application Control

 

DriveLock™ gives you complete control over who can run which program on any computer within your organization. You can blacklist programs to block malicious software, or you can whitelist programs to restrict users to a tightly controlled set of applications. You can even combine both methods to meet the specific needs of your organization. Application control rules can even be set for a specific network, for example allowing someone to run a communications program while away from the office, and blocking it while connected to the corporate network.

 

 

 

 

Most of the Most of the threats from unapproved device usage can be eliminated by simply disabling the ports to which these devices can be attached.  However, this is not a realistic solution for organizations that depend on selected external devices for approved business functions or need to move data between computers using mobile storage.

organizations that depend on selected external devices for approved business functions or need to move data between computers using mobile storage.

Read more

How to Buy
Contact us directly