Feeds

Altiris makes security location-aware

Lock up your ports and limit your apps

The essential guide to IT transformation

Location-awareness will be the next big thing in device security, claimed Altiris as it became the latest vendor to jump into the increasingly crowded market for endpoint security software this week.

As well as all the usual capabilities to control USB and wireless usage, block keyloggers and spyware, and so on, the Altiris software can apply rules that depend on the device's current location.

"Organisations tend to try to control by saying that things are not allowed, but that doesn't work," says Altiris marketeer Chris Ewing. "So you need the ability to flexibly control policy depending on where the user is.

"Our control is more granular than Vista's, for example. We can define locations, types of devices, the type of wireless networks to connect to the level of encryption required, and so on."

So it might allow you to copy data to an encrypted USB stick, but not an ordinary one, enforce the use of a VPN on a public Wi-Fi hotspot, make a device read-only when it's out of the office, or block data transfers via infra-red or Bluetooth.

The client security software works with other Altiris applications that set security policies, scan for viruses and security patches, quarantine out-of-compliance systems for fixing, and so on.

Altiris also added software to centrally manage the administrator passwords for PCs. Ewing said that by generating randomised passwords and storing them in the main configuration management database, this avoids the risks inherent in admins using the same password for everything.

She added that next week the company will introduce application control software that prevents unknown or unauthorised programs from running. As well as blocking malware and preventing users from installing their own software, this will allow different applications to run with different privileges on the same system.

"You can demote privileges, for example to stop Internet Explorer running with admin rights, or promote older applications that need admin rights to run," Ewing said.®

Next gen security for virtualised datacentres

More from The Register

next story
Ice cream headache as black hat hacks sack Dairy Queen
I scream, you scream, we all scream 'DATA BREACH'!
Goog says patch⁵⁰ your Chrome
64-bit browser loads cat vids FIFTEEN PERCENT faster!
NIST to sysadmins: clean up your SSH mess
Too many keys, too badly managed
Scratched PC-dispatch patch patched, hatched in batch rematch
Windows security update fixed after triggering blue screens (and screams) of death
Researchers camouflage haxxor traps with fake application traffic
Honeypots sweetened to resemble actual workloads, complete with 'secure' logins
Attack flogged through shiny-clicky social media buttons
66,000 users popped by malicious Flash fudging add-on
New Snowden leak: How NSA shared 850-billion-plus metadata records
'Federated search' spaffed info all over Five Eyes chums
Three quarters of South Korea popped in online gaming raids
Records used to plunder game items, sold off to low lifes
Oz fed police in PDF redaction SNAFU
Give us your metadata, we'll publish your data
prev story

Whitepapers

5 things you didn’t know about cloud backup
IT departments are embracing cloud backup, but there’s a lot you need to know before choosing a service provider. Learn all the critical things you need to know.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Backing up Big Data
Solving backup challenges and “protect everything from everywhere,” as we move into the era of big data management and the adoption of BYOD.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?