Safend Protector detects and allows restriction of devices by device type, model or even specific device serial number. For storage devices, Safend Protector allows security administrators to either block all storage devices completely, permit read-only, encrypt all data on devices as well as monitoring, blocking and logging files that are downloaded to or read from these devices.

Safend Protector includes an additional layer of granularity and security by inspecting files for their type as they are transferred to/from external storage devices. This technology allows for highly reliable classification of files by inspecting the file header contents rather than using file extensions, thus preventing users from easily bypassing the protection by renaming file extensions. With over 180 built-in file extensions covering all popular applications categorized into 14 file categories, policy definition has never been easier.

Advantages to inspecting both files downloaded to external storage devices and those uploaded to the protected endpoint include:

• An additional protection layer for preventing data leakage
• Prevention of viruses/malware introduction via external storage devices
• Prevention of inappropriate content introduction via external storage devices, such as:
  o Unlicensed software
  o Unlicensed content (e.g. music and movies)
  o Non work-related content (e.g. personal pictures)

With this feature, administrators can define policies which approve/block specific file types on the inbound and outbound channels. This includes separate definitions for each channel as well as support for both white list and black list methodologies.