2. Endpoint Data Loss Prevention
  3. DeviceLock

DeviceLock 

 

782

DeviceLock DLP


Stop Data Leaks at the Source


Nearly two thirds of serious data leakage incidents are caused by employees, contractors or visitors - whether through unintentional mistakes or by malicious intent.

With over 70,000 customers who’ve installed DeviceLock on over 7 million computers, DeviceLock Data Loss Prevention (DLP) software can protect your valuable data from this serious insider threat for less than you’d probably expect.

Prevent Devastating Data Leaks by Securing the Endpoints of Your Network


DeviceLock provides network administrators the ability to set and enforce contextual policies for how, when, where to, and by whom data can or can’t be moved to or from company laptops or desktop PCs via devices like phones, digital cameras, USB sticks, CD/DVD-R, tablets, printers or MP3 players. In addition, policies can be set and enforced for copy operations via the Windows Clipboard, as well as screenshot operations on the endpoint computer.

NetworkLock adds contextual-level control of user network communications via the Internet through such means as: company email, personal web mail, instant messaging services, social networks (like Facebook, Google+, Twitter), web surfing, FTP file transfers, as well as cloud-based file sharing services like Dropbox, SkyDrive and Google Drive.

ContentLock adds the capability to look inside files and other data objects (like emails and web mails, chats, blog posts, etc.) for sensitive information like social security numbers, credit card numbers, bank account numbers or other user-definable information and to make block-or-allow decisions based on policies having to do with file contents.

Discovery is a separately licensed component, which helps network administrators and security personnel locating certain types of content stored within and outside the limits of the corporate network. Discovering unwanted content is essential when trying to protect the company’s intellectual property, control employee activities and administer computer networks.

Search Server is an optional separately licensed component, which provides full-text searching of logged data. The full-text search functionality is especially useful in situations when you need to search for shadow copies of documents based on their contents.

The combination of all of these modules working together is the DeviceLock DLP Suite. The DLP Suite provides protection against local and network data leaks at the endpoint (laptop, desktop or server) via a wide array of threat vectors.

These include: iPhones, Androids, BlackBerry, other smart-phones,iPods, iPads, digital cameras, Wi-Fi, Bluetooth, FireWire, social media, IM, web mail, company email, printing, CD or DVD ROM, USB flash drives, CompactFlash, FTP/FTPS, HTTP/HTTPS and the clipboard.

Natively integrated with Microsoft Active Directory Group Policy, the DeviceLock DLP Suite is very easy and straight-forward to install and configure. Typical installations are handled by Microsoft Network Administrators and do not require expensive, specially trained resources.

The other great customer benefit of DeviceLock’s tight integration with Active Directory is that it gives the solution virtually limitless scalability. The DeviceLock DLP Suite can effortlessly run on every endpoint listed in your Active Directory database … even if there are tens of thousands.

DeviceLock EtherSensor, an optional server module of DeviceLock DLP, is a high-performance network event and message extraction system that enables organizations to implement comprehensive monitoring, capturing, and analysis of corporate network traffic in real-time with the aim of reconstructing, filtering, and collecting transmitted application-level data objects (messages, files, posts, etc.), their metadata, as well as logging relevant events.
 
DeviceLock EtherSensor supports streamed traffic processing in 20 Gbps+ channels while running on dedicated or virtualized Windows servers. EtherSensor only takes up a small server footprint while ensuring minimal resource consumption with the desired level of network communications monitoring.
 
The coordinated use of DeviceLock Agents enforcing full-function preventive DLP controls on their host computers in combination with a network-resident DeviceLock EtherSensor that monitors, captures, and analyzes all traffic in the corporate office, enables organizations to implement an effective hybrid DLP solution.
 
EtherSensor-collected messages, metadata, and logs can be delivered to the central log database of DeviceLock DLP.
 
DeviceLock EtherSensor monitors, captures raw traffic, and extracts application-level data from the following network communications: social media, emails, webmails, instant messages, etc.
 
DeviceLock EtherSensor is licensed independently of other DeviceLock DLP modules. A license is required for each user using the network and needed to be monitored.

What's New in DeviceLock 9.0:


User Activity Monitor

  • Added a new optional licensed component: User Activity Monitor (UAM).
With UAM, you can monitor end-user activity by video capturing a user's computer screen, and recording all keystrokes and information about the processes and applications that were running and used during the recording. This level of activity monitoring reduces the risk of data leaks by significantly expanding the evidence base in investigations of information security incidents, simplifies the process of identifying suspicious user behavior, and helps to reveal misuse of access privileges or data protection policies. An important feature of DeviceLock UAM is the ability to record a computer screen, keystrokes, and process information precisely when a specific event occurs. You can configure DeviceLock UAM to start recording upon various event occurrences, such as triggering a certain content inspection rule, connecting an external drive, or running a certain process in the system.

NetworkLock

  • Enhanced WhatsApp Desktop application support in Protocols.
  • Enhanced support for WeTransfer, Amazon S3, and Cloud Mail.ru in the File Sharing control in Protocols.
  • Improved support for Facebook in the Social Networks control in Protocols.
  • Enhanced Mail.ru in the Web Mails control in Protocols.
  • Enhanced IBM Notes support in Protocols.

DeviceLock

  • A new report type is added to the DeviceLock Enterprise Server: User Dossiers.
These powerful and easy-to-use reports enable information security teams to keep track of computer user activity by using a convenient graphical representation of user action statistics. The statistical overview of online user activity presented in User Dossiers is based upon various indicators that are enriched with LDAP directory data (including Active Directory Domain Services). User Dossiers show the frequency of attempts to perform unauthorized actions, transfer large amounts of data, reveal changes in the network user activity, and more. The statistical data provided by User Dossiers assists Administrators in analyzing the history of user activity and helps identify typical violations of security policies. These include a "loyalty indicator," most-used devices and network protocols, most frequently transferred files, and more.

  • Added support for Windows 10 version 2004 (20H2).
  • Relations Charts now display the user's domain name as the identifier for contacts whose IDs (such as e-mail address, IM identifier, etc.) belong to known domain users.
  • DeviceLock Service and DeviceLock Discovery Agent no longer support Windows NT4 and Windows 2000.
  • DeviceLock Service for Mac no longer supports macOS versions prior to 10.15 (Catalina).
  • DeviceLock Printer Viewer and DeviceLock Web Console are removed from the distribution package.

ContentLock / Discovery

  • Oracle IRM is no longer supported.

Discovery

  • Added support for a new Discovery target: Elasticsearch servers.


                                                                                                                                                                                          To request a price quote or find out more about the types of licenses available, please contact us


                                                                                                                                                                                          Established in 1996, DeviceLock provides endpoint device/port control and data leak prevention software for business, education and government institutions around the world.

                                                                                                                                                                                          As of July 15, 2020, DeviceLock is a wholly owned subsidiary acquired by Acronis, a global leader in cyber protection.  The board of directors and executive team of DeviceLock is confident that by merging with Acronis, their customers and partners will benefit from accessing a broader range of solutions and capabilities that solve their evolving cyber protection needs. At the same time, their team can accelerate product innovation, expand our distribution channel, and leverage existing technology to meet customer requirements.