Marshal EndPoint Security

You've spent thousands keeping your data safe from hackers outside the organisation. But thanks to the popularity of small data storage devices such as USB Flash Drives, MP3 Players and PDA's it's now easier to steel data from the inside than it is to break in to your IT systems across the internet. The Marshal EndPoint Security solution helps you to extend your organization's data loss prevention strategy, by managing and controlling connection of portable media devices to company-owned PCs. You can enforce your Acceptable Use Policies by controlling which employees can connect all portable device types. You can also monitor employee access to wireless networks. The solution also provides your administrators with complete visibility of all successful and unsuccessful attempts at device and wireless connections and data transfers. Marshal EndPoint Security helps protect your data, both on and off the network: Prevention - Prevents the transfer of files to or from unauthorized portable devices Protection - Automatically encrypts data copied to approved devices Visibility - Provides complete visibility of device and file accesses on the network Flexibility - Provides granular control over who has access to what devices and for how long

Encryption
Marshal EndPoint Security can automatically encrypt all data copied to authorized storage devices such as USB flash drives. Using the latest Blowfish and AES 256-bit ciphers, Marshal EndPoint Security ensures that even if data is lost in transit, it won't create a costly and embarrassing security breach.

Access Auditing
Marshal EndPoint Security provides complete visibility of all user and administrator actions, recording everything from individual device connections to the most popular files accessed on portable devices. A full audit trail of administrator actions helps ensure compliance with security management policies.

Regardless of whether the device is connected locally or wirelessly, if the PC is on the corporate network or offline, Marshal EndPoint Security constantly manages device connections to ensure the integrity of your network is not compromised.

Features & Benefits

Device Control

Manage Data Connections
Marshal EndPoint Security actively manages the connections that can be used to move files to and from the PC. Many common device types are managed by default, such as:

• USB and Firewire Ports
• LPT and COM Ports
• Internal and external floppy drives
• Internal and external CD and DVD drives
• WiFi, Bluetooth and Infrared wireless connections

Customized Control
For those occasions where a greater level of granularity is required, Marshal EndPoint Security enables authorized administrators to create new classes based on specific makes and model of device.

For example, by creating a custom security policy it is possible to deny use of all USB flash disks except a particular type of secure device provided by the company to senior managers. Using this feature, Marshal EndPoint Security can also be used to manage additional device types such as local printers, PCMCIA cards and even internal modems.

Encryption

USB Encryption
To ensure that data legitimately copied onto a USB flash drive doesn't end up in the wrong hands, Marshal Endpoint Security offers the option to encrypt files as they are transferred. The encryption process is transparent to end users and has no negative effects on employee productivity.

Using a choice of industry-standard 256-bit AES and Blowfish encryption ciphers, Marshal Endpoint Security can transform any USB flash drive into a secure means of transporting sensitive company and customer information.

You can choose to apply either a global or personal key to the encrypted data. This option determines whether the data can be read by any company-owned PC carrying the organization's unique keycode, or whether the user will need an additional password to retrieve files.

Encrypted disks cannot be accessed by PCs outside the organization. Files cannot be accessed on non-authorized systems or networks.

Auditing

Comprehensive Reporting
A comprehensive suite of tabular and graphical reports make it easy for administrators to get both a high-level view of device activity on the network and detailed forensics on file movements.Marshal EndPoint Security automatically monitors all device connections, reporting back vital information such as device class, user, PC, time of connection and whether the connection was blocked or allowed.

What's more, you don't need to trawl through hundreds of log files to get the information you need - it's all presented in a user-friendly graphical report which can be shared with senior management.

File Accesses
All attempted (both successful and blocked) file accesses are recorded and reported back to the Control Center. This allows managers to see which files are being read, renamed, deleted and copied to portable storage devices.

Administrators can search on file name, file type, user, time, PC and whether the action was allowed or blocked. To help provide focused forensics, Marshal EndPoint Security can be configured to only report on certain file types or actions.

Administrator Actions
Just as Marshal EndPoint Security provides vital information on user behavior, it also collects important forensic data in the form of administrator actions. As such, whenever a policy is modified or deployed to a PC, or temporary access granted to a user, Marshal EndPoint Security automatically records this in the main administrator log.

Exporting
All Marshal EndPoint Security logs and audit trails can be exported in CSV format for further processing in third-party reporting tools.

Simple Administration

Policy Management
With its intuitive policy creation wizards and seamless integration with Active Directory, Marshal EndPoint Security makes it easy to set and apply policies. Administrators simply choose the type of device they want to manage and then assign rights to individuals and groups already created on the network.

Deployment
Marshal EndPoint Security policies can be deployed across the organization without the need to leave the main Control Center. Whether deploying to a single computer, IP range or entire network, new and updated policies can be pushed-out instantly.

Reporting
Marshal EndPoint Security features a built-in suite of log-style and graphical reports which make it easy for administrators and managers to track all device connections and attempted data transfers.

All other major features such as Temporary Access and Encryption settings can also be access directly from the main Control Center.

Server

• Processor: Pentium Class
• Memory: Minimum 128MB
• Disk Space: Minimum 512MB
• Operating System: Microsoft Windows 2000, XP, 2003 (32-bit editions)

Network Environment

• Apache Web Server (supplied) or Microsoft IIS 5.0+
• Marshal EndPoint Security requires a domain-based Windows network
• Active Directory is recommended, but not required

Clients

• Operating System: Microsoft Windows NT (SP6), 2000 (SP4), XP, 2003
• Hardware Requirements: Marshal EndPoint Security will work on any machine capable of supporting the above operating systems