Lumension Application Control
Lumension Application Control™ (formerly Sanctuary) allows you to centrally manage, monitor, and control applications with a whitelist approach so that only authorised applications can run. This ensures no malware, spyware, keyloggers, Trojans, worms, viruses, zero-day threats and unwanted or unlicensed software will execute on your network and disrupt your business.
Lumension Case Study
[An] Interim Report published 17th December 2007 outlined initial directions in response to the missing HMRC discs and the loss of a laptop by the MoD. A particular requirement was the need to make clear the lines of responsibility for secure data handling.
Lumension
Read the Compliance with Data Handling Procedures in UK Government white paper
Application Control Business Issues and Challenges
The battle to protect your network from malware is a costly, ongoing struggle taking up valuable IT resources and time. When a new malware threat appears, you have to stop what you're doing and update your antivirus signatures immediately to protect your data, taking valuable time away from daily activities.
The threats aren't going to stop and antivirus software alone cannot control the problem as malware threats are being developed faster than the necessary fixes. malware has grown over 500% with more than 5.49 million unique samples of malicious software in 2007¹ and 2008 has seen the rise of targeted attacks, which are now being designed to specifically bypass antivirus solutions.
Organisations need a product that prevents the execution of malicious code, instead of one that requires time-consuming and reactive antivirus signature updates.
¹ AVtest.org, 2008
Prevent malware & Unauthorised Software Applications with Application Control
Protect your organisation against malware attacks before they occur by proactively controlling the applications executing on your desktops, laptops, servers, kiosks and POS systems with Lumension Application Control, a primary component of Lumension Endpoint Protection™ solution.
Lumension Application Control provides complete malware protection and increases IT and end-user productivity by preventing unwanted applications from causing configuration issues and consuming network bandwidth.
You'll be audit-ready with a detailed audit trail of all application and device execution attempts along with proof that software licenses are in compliance. With no viral attacks to thwart, malware to hunt down, or incompatible applications to invoke the blue screen of death, you can spend more time on other projects instead of constantly fixing computers.
How It Works
- Discover - Identify all executable files and devices, collect profiles and organise into pre-defined file groups.
- Implement - assign permissions for applications to run based on executable, user, or user group attributes. Use an application whitelist approach to ensure that only authorised and legal applications can run on a computer. When a user wants to run an application, the OS request at the kernel level is intercepted by the Lumension driver. If the user has rights, then access will be granted. If the application is not known or the user does not have rights, then access will be denied.
- Monitor - monitor the effectiveness of endpoint security policies in real time and identify potential threats by logging all application execution attempts and recording all policy changes and administrator activities.
- Report - demonstrate policy compliance and ensure software license compliance to meet Sarbanes Oxley, HIPAA, PCI, and GLBA requirements by drilling down on suspicious behavior for security or legal follow-up.
