|
To achieve true endpoint security, a solution needs to be virtually impossible to circumvent, disable, or uninstall. The solution needs to enforce the security policies set by administrators, without fail.
As opposed to anti-virus or gateway security solutions - where IT and users share the common goals of protecting the network from harm – endpoint security often involves limiting users' freedom of action.
Thus, it is possible that users may try to circumvent endpoint security solutions – sometimes with malicious intent, and sometimes simply in an effort to work and play as they please.
For this reason, Safend developed ironclad security mechanisms around its product offering.
Safend agent includes redundant, multi-tiered anti-tampering features to guarantee permanent control over enterprise endpoints.
Anti-tampering features include:
Encryption
- Local polices, logs stored at the agent, and all server-client communications are encrypted by advanced encryption algorithms.
- Local policies are “signed” with unique ID which, if altered, highlights any tampering attempt
Uninstall password
- Even users with local administrator rights need a password to remove the local agent
Lock Down
- Safend locks down the local client, prevents further action and sends an alert if it detects unauthorized attempts to erase, alter, or change the products security settings
Always-On
- The last known security policy is always enforced, until the agent is uninstalled, even if the endpoint is disconnected from the network or if the server is temporarily unavailable.
Full Safe Mode Operation
- Safend Protector is fully functional even when the operating system is running in Safe Mode
|