Safend Products:
Safend Protector Safend Reporter Safend Auditor Demo Request
Resources:
Documentation FAQ Technology USB Data Protection Compliance Solutions
Feedback:
Customer Testimonials Case Studies
Technical Services:
Leasing Technical Webinar Consulting Regulatory Compliance
Join Our Blog:

Click Here to Join Our Blog!

Safend Products - Securing Your EndPoints - Available at PortProtector.comSafend Protector


Absolute Endpoint Security

Safend Protector - Absolute Endpoint SecurityStop Data Leakage through Endpoints and Removable Media

Safend Protector v3.0 is the industry's most comprehensive, secure and easy-to-use endpoint security solution - controlling every endpoint and every device, over every network or interface.

Safend Protector monitors real-time traffic and applies customized, highly-granular security policies over all physical, wireless and removable storage interfaces, including:

Safend Protector Interface coverage

Safend Protector detects and allows restriction of devices by device type, model or even specific device serial number. For storage devices, Safend Protector allows security administrators to either block all storage devices completely, permit read-only, or even block devices above a certain storage capacity. WiFi controls are based on MAC address, SSID, or network security level.

Security Policy – Flexible Strategy, Simple Implementation

Safend Protector creates forensic logs of all data moving in and out of the organization, allowing administrators to create policies that don’t necessarily restrict device usage, but allow full visibility device activity and content traffic.

Through a built-in and flexible management console, Safend Protector allows administrators to create comprehensive and granular endpoint security policies. Policies are exported directly to Active Directory as Group Policy Objects (GPOs), ready to be assigned to relevant Organizational Units (OUs) and silently installed on clients.

With built-in alerting capability, administrators can get immediate notifications of any activity that needs immediate response. Alerts are available via email, SNMP, Syslog, Windows Event Viewer, popup messages and even custom scripts.

Safend Protector InterfacesClick here for screenshots.

Uncompromised Control with Tamper-Proof Agent

Safend Protector’s lightweight and tamper-proof client-side agents are easily deployed, installed silently at the endpoint with no reboot required. The Protector agent operates at the kernel level, and includes redundant, multi-tiered anti-tampering features to guarantee permanent control over endpoints. Even local administrators can’t circumvent security policy. In addition, agents are invisible to end-users until a non-approved device is connected, at which time a custom-defined notification appears.

Safend Protector Advantages

  • Granular control - detects and restricts devices by device type, device model or unique serial number
  • Policy flexibility - separate policies can be defined for any domain, group, computer, or user; policies are easily associated with Active Directory Organizational Units (OUs) for GPO update
  • Advanced policy enforcement - via independent, kernel-level, real-time analysis of low-level port traffic
  • Secure agent – silent deployment, redundant multi-tiered anti-tampering prevents security policy circumvention
  • Intuitive management - seamlessly integrates into Active Directory or other network management software
  • Easy auditing and visibility - Encrypted logs and alerts can be viewed in the management console or integrated with third-party software for comprehensive analysis or immediate notifications
  • Multilingual – Safend Protector speaks your language, allowing easier local administration

What’s New in Safend Protector v3.3

New Safend Protector Features

File Shadowing
Version 3.3 of Safend Protector introduces File Shadowing – the ability to track and collect copies of files moved to/from external storage devices. It is now possible to set policies requiring shadowing of all data on each of the inbound and outbound channels separately as well as require shadowing for specific file types. These policies can then be applied granularly on specific users or computers as well as on groups and OU’s. Collected shadow files are securely stored in a central repository and available for review by authorized administrators.

With the introduction of file shadowing, special emphasis was made on preserving the product’s security and tamper resistance levels, while minimizing storage and network utilization requirements.

External Storage Encryption Enhancements
With version 3.3, Safend Protector offers several major enhancements to its external storage encryption suite:

  • Comprehensive Encryption Suite:
    In previous versions, Safend Protector allowed administrators to mandate the encryption of all the data being transferred off organization endpoints to approved removable storage devices such as USB flash drives, Disk on Keys, memory sticks and SD cards.

    In version 3.3, Safend Protector also allows administrators to mandate the encryption of data transferred to external hard drives as well as CD/DVD media and removable storage devices, delivering the most comprehensive external storage encryption solution in the market.
  • Encryption / Decryption Utility:
    As in previous versions, approved users can securely access the encrypted storage on non-protected computers by using the Safend Protector Access Utility and Device Password. Version 3.3 allows for an even greater flexibility by enabling the Access Utility to operate even if the user does not have administrator rights on the unprotected machine. This is especially useful for securely sharing data between organizations, since many organizations do not delegate administrator privileges to all their employees.
  • Configurable Password Policy:
    In version 3.3, administrators can define the security criteria for the Safend Protector Access Utility device password. Administrators can predefine password parameters such as minimal password length and the types of characters it contains, in order to comply with the organization's security guidelines.
Server Cluster
As Safend Protector gains a growing number of features the processing load on the management server increases. Specifically, with the new File Shadowing feature the amounts of data sent from endpoints increases significantly. On the other hand, as more features are added, the Management Server becomes a mission-critical element.

In order to handle the growing amounts as well as provide redundancy and high availability, it is now possible to install several Management Servers which seamlessly share the load of traffic from the endpoints as well as serve as a hot backup for each other.

Domain Partitioning
Since Safend Protector architectures allow large scale organizations to manage their entire organization with a single Safend Server or Server cluster, a need arises for more scalable Safend Administrator permission settings; large organizations can employ several security officers, each responsible for a different part of the organization. Safend Protector Version 3.3 accommodates this need by extending the Protector Role Based Access mechanism to include a definition of the Domain Partition a Safend Protector Console user can manage. This sub-administrator will not be able to perform any administrative actions on parts of the organization he does not have permission to, including viewing logs or changing the security policy.

Windows XP 64 bit Support
Safend Protector Client version 3.3 can be now installed on Windows XP 64 bit operating system endpoints. This includes all features of previous versions as well as the new features of version 3.3.

Safend Protector Add-On Module: Safend Reporter
While Safend Reporter is sold separately, it is complimentary and a natural extension of Safend Protector. This product introduces an extensive reporting mechanism, which provides a new level of visibility into the Safend protected organization.

Safend Reporter includes several built-in reports that are designed to accommodate the security and operational needs of the organization and its security and IT personnel. The information is provided in a clear, easy to understand format for the benefit of non-technical viewers, such as executives within the organization.

The security reports allow easy detection of specific employees and departments that frequently disregard internal security policies, while the administrative reports assist in the deployment, policy distribution and overall visibility of endpoint activity within the organization.

The Safend Reporter interface allows a step-by-step drill down into different aspects of the report, and enables a quick and intuitive transition from a high-level view to specific detailed information.

The reports can either be viewed from within the Safend Protector Management Console, using the newly added Report World, or be exported to one of several popular formats for viewing and analysis outside of the Management Console. The reports can also be scheduled and sent periodically by email to predefined recipients in order to ensure continuous tracking of the organization’s data security status and compliance to internal security policies.

Safend Product Demo Request - Get Your Free Assessment Today!
Safend Products - Securing Your EndPoints - Available at PortProtector.com PortProtector.com is a division of Virtual Graffiti Inc, an authorized Safend reseller.
Copyright © 2008 Safend. All Rights Reserved.
Sales/Privacy Policy