Safend Inspector | PortProtector.com

Safend Inspector Overview:

Prevent sensitive data leakage through Email, Web, removable storage, and additional data transfer channels
Avoid user errors and enhance security awareness
Enable compliance with regulatory, data security, and privacy standards
Deploy and manage a single agent for all data protection needs

The Need for Endpoint Content Control

Industry statistics consistently show that the most significant security threat to the organization comes from within. With over 60% of corporate data residing on endpoints, gateway solutions and written security policies alone can not mitigate the risk.

Sensitive data can exit organizational boundaries through multiple channels; it can be carried away on a USB flash drive, burned to a CD, sent via email or posted on the web. While some data transfer channels can be partially disabled to minimize the risk, few organizations can completely disable outbound data traffic without dramatically affecting productivity. To properly balance security and compliance demands with business objectives, enforcement measures must be carefully adjusted to control only the specific data restricted by company policy, without interrupting legitimate user actions.

Safend Inspector - Eliminate Sensitive Data Leakage

Safend Inspector enforces a data-centric security policy across multiple channels, including email, web (HTTP, HTTPS), FTP, external storage devices, CD/DVD burners, PDA devices, file repositories, print screen, local printers, and network printers, without disrupting legitimate business processes or harming end user productivity.

User actions can be stopped, generate an “are you sure?” message, monitored, or generate an alert for the security administrator, based on the actual content of the transferred data as well as the action context and meta data. This protection is fully active regardless if the machine is connected to the organization’s network, a home network or used offline.

Security policies are highly granular, and can apply different protection measures according to channel specific context information. For example, a security policy can prevent users from downloading confidential data to external storage devices other than company issued hardware-encrypted devices.

Safend Data Protection Suite will protect your organization against endpoint data loss, misuse or theft through its single server, single console, single agent architecture. The award winning suite includes: Safend Auditor - immediately recognize security risks by identifying WiFi ports or devices currently or historically connected to endpoints. Safend Discoverer - locate and map sensitive data at rest. Safend Inspector - inspect, classify and block leakage of sensitive content through email, IM, Web, external storage, printers and more. Safend Encryptor - transparently encrypt laptops and PC’s. Safend Protector - block or encrypt data transferred to external media and devices (CD/DVD, USB, Firewire, etc..) and block connections to unsecure wireless networks. Safend Reporter - easily generate graphical regulatory compliance reports and security log summaries through an intuitive tool.

Safend Data Protection Suite will protect your organization against endpoint data loss, misuse or theft through its single server, single console, single agent architecture. The award winning suite includes:

Safend Auditor - immediately recognize security risks by identifying WiFi ports or devices currently or historically connected to endpoints.
Safend Discoverer - locate and map sensitive data at rest.
Safend Inspector - inspect, classify and block leakage of sensitive content through email, IM, Web, external storage, printers and more.
Safend Encryptor - transparently encrypt laptops and PC’s.
Safend Protector - block or encrypt data transferred to external media and devices (CD/DVD, USB, Firewire, etc..) and block connections to unsecure wireless networks.
Safend Reporter - easily generate graphical regulatory compliance reports and security log summaries through an intuitive tool.

Features and Benefits:

Comprehensive Protection
Enforces a data-centric security policy across multiple channels, regardless if the machine is connected to the organization’s network, a home network or used offline. Additional channels can be added upon demand using Application Data Access Control.
Accurate Data Classification
Multiple data identification techniques can be combined for highly accurate data classification.
Built-in Compliance Policies
Includes preconfigured security policies designed to address specific regulatory compliance standards, such as PCI, HIPAA, and Basel-II.
Rich End User Interaction
Security policies can mandate users to provide justifications for problematic actions. Such a policy can quickly and accurately close the enforcement loop and help users avoid potentially harmful actions without disrupting business processes.
Full Visibility and Audit Trail
Receive detailed logs and reports on security incidents and administrative actions.
Tamper Resistant
The agent includes multi-tiered anti-tampering capabilities to guarantee permanent control over enterprise endpoints.
Flexible and intuitive management
Automatically synchronizes with Microsoft Active Directory and Novell eDirectory.

Technical Specifications:

Controlled Network Channels

Email
Web (HTTP / HTTPS)
Network Printers
File Shares
FTP

Controlled Endpoint Channels

Removable Storage Devices
External Hard Drives
CD / DVD
Local Printers
Screen Capture
Application Channels (custom)

Certification

Common Criteria EAL2 certified
FIPS 140-2 Validated

System Requirements - Agent

Windows XP Professional (SP1, SP2, SP3)
Windows XP Tablet PC Edition (SP1, SP2, SP3)
Windows 2003 Server (SP1, SP2)
Windows Vista Enterprise, Business and Ultimate Editions (SP1)

System Requirements - Server

Windows 2003 Server (SP1, SP2)
Windows XP Professional (SP2) for evaluation only

Documentation:

Download the Safend Inspector Data Sheet (PDF).