Feeds

Altiris makes security location-aware

Lock up your ports and limit your apps

Internet Security Threat Report 2014

Location-awareness will be the next big thing in device security, claimed Altiris as it became the latest vendor to jump into the increasingly crowded market for endpoint security software this week.

As well as all the usual capabilities to control USB and wireless usage, block keyloggers and spyware, and so on, the Altiris software can apply rules that depend on the device's current location.

"Organisations tend to try to control by saying that things are not allowed, but that doesn't work," says Altiris marketeer Chris Ewing. "So you need the ability to flexibly control policy depending on where the user is.

"Our control is more granular than Vista's, for example. We can define locations, types of devices, the type of wireless networks to connect to the level of encryption required, and so on."

So it might allow you to copy data to an encrypted USB stick, but not an ordinary one, enforce the use of a VPN on a public Wi-Fi hotspot, make a device read-only when it's out of the office, or block data transfers via infra-red or Bluetooth.

The client security software works with other Altiris applications that set security policies, scan for viruses and security patches, quarantine out-of-compliance systems for fixing, and so on.

Altiris also added software to centrally manage the administrator passwords for PCs. Ewing said that by generating randomised passwords and storing them in the main configuration management database, this avoids the risks inherent in admins using the same password for everything.

She added that next week the company will introduce application control software that prevents unknown or unauthorised programs from running. As well as blocking malware and preventing users from installing their own software, this will allow different applications to run with different privileges on the same system.

"You can demote privileges, for example to stop Internet Explorer running with admin rights, or promote older applications that need admin rights to run," Ewing said.®

Internet Security Threat Report 2014

More from The Register

next story
Knock Knock tool makes a joke of Mac AV
Yes, we know Macs 'don't get viruses', but when they do this code'll spot 'em
Feds seek potential 'second Snowden' gov doc leaker – report
Hang on, Ed wasn't here when we compiled THIS document
Why weasel words might not work for Whisper
CEO suspends editor but privacy questions remain
DEATH by PowerPoint: Microsoft warns of 0-day attack hidden in slides
Might put out patch in update, might chuck it out sooner
BlackEnergy crimeware coursing through US control systems
US CERT says three flavours of control kit are under attack
prev story

Whitepapers

Cloud and hybrid-cloud data protection for VMware
Learn how quick and easy it is to configure backups and perform restores for VMware environments.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
Protecting against web application threats using SSL
SSL encryption can protect server‐to‐server communications, client devices, cloud resources, and other endpoints in order to help prevent the risk of data loss and losing customer trust.