| |
| |
|
| |
|
|
| |
Executive
Summary
Computer
security is in the spotlight. The focus
over the last few years has been on firewall
technology to help secure organizations
from external security breaches. However,
security experts continue to report increasing
incidents of internal security attacks.
As a result, there is an increased concern
over protecting access to vital corporate
data from within an organization.
Despite
all this attention, the reality of creating
and implementing an effective security policy
remains quite challenging. This is due,
in part, to limited IT resources and end-user
resistance to the work interruptions that
compliance often imposes.
Ensure
Technologies was founded to address the
growing need for securing and protecting
PCs and workstations from internal security
threats - conveniently, automatically and
transparently. Ensure's XyLoc security technology
continues to protect the network when it
is most vulnerable-after logon, when PCs
are left unattended for any period of time,
whether the user is sending a fax, attending
a meeting or going to lunch.
|
|
| |
|
|
|
|
|
|
| |
Computer
Security: A Growing Market |
|
|
|
|
|
|
|
|
| |
In
recent years, there has been heightened
attention to computer security in the workplace.
The Internet, Intranets, electronic commerce,
remote access and other popular technologies
have brought computer security to the forefront
of people's minds. The issue of protecting
important electronic information has rarely
received such intense focus. While firewalls,
encryption and other technologies have been
making some headway in addressing external
security threats, many gaps exist internally
within an organization.
Internal
security breaches occur far more frequently
than most companies realize or are willing
to admit. But security experts report that
internal breaches present a much greater
threat than external attacks on an organization's
information resources. A recent Computer
Security Institute/FBI study found that
64% of respondents reported unauthorized
insider access within the previous 12 months
with the average loss reported at almost
3 million dollars. Additionally, the IS
Audit and Control Journal reported that
90 percent of computer theft involves people
within an organization.
Awareness
to the problem is increasing. However, one
of the biggest hurdles to implementing security
policies is user compliance. Users either
resist internal security measures altogether
because they are too intrusive, or they
are not always as vigilant as they need
to be. This has left many organizations
in a quandary about how to devise a security
policy that is both easy to implement and
convenient to use.
|
|
|
|
|
|
|
|
|
| |
XyLoc:
Ensuring Authorized Access to PCs |
|
|
|
|
|
|
|
|
| |
 |
Ensure's
XyLoc™ is a comprehensive and scalable
family of products that delivers personalized,
convenient security when it's needed
most-after logon, whenever the user
steps away from the computer. XyLoc
uses an electronic Lock and Key to constantly
protect computers, ensuring that only
authorized users are granted access
to corporate PCs and resources. |
Unlike other security products available
on the market, XyLoc guards against unauthorized
access to computers left unattended for
any period of time - to send a fax, attend
a meeting or go to lunch. XyLoc continuously
monitors for the presence or absence of
authorized users at the PC and unlocks or
locks the desktop as appropriate.
For IS managers, XyLoc is a 24-hour, full-time
desktop security system that can be centrally
administered and managed. It is an ideal
solution for initiating a security policy
for the first time or strengthening an existing
security infrastructure. For end users,
XyLoc convenient and easy-to-use; it transparently
controls access to the PC - without impeding
their work processes. Other security products
require strict adherence to a security policy,
such as logging out each time the user steps
away from the PC. XyLoc, however, delivers
positive identification and full-time protection
to the desktop without requiring any user
intervention or disrupting user workflow.
In addition to simplifying security procedures,
XyLoc's built-in intelligence can speed
other common computing functions such as
network log-on and setting user preferences.
|
|
|
|
|
|
|
|
|
|
|
| |
XyLoc
is the only security solution that continues
to protect the network after a user has
logged on. XyLoc consists of a radio transceiver
"Lock" that plugs in to the computer
and a discrete wireless radio transmitter
"Key" worn by the user. The Lock
and Key stay in constant radio communication
(up to 50 feet, or 15 meters) to determine
user identity and location relative to the
computer. When a user approaches a computer
protected by XyLoc while wearing a XyLoc
Key, the Key automatically transmits a unique,
32-bit encrypted ID code to the Lock. The
Lock passes the user's identity to the XyLoc
software; if authorized, the XyLoc system
will login/unlock the computer's keyboard
and screen. If unauthorized, the system
remains locked and information secure. Full
audits reports detail each transaction.
There
is a XyLoc product for every business environment:
XyLoc
Solo for single installations or small
workgroups; XyLoc
Enterprise with central management for
enterprise environments
XyLoc
MD for the healthcare industry and
Application Integration as a
add-on module.
The
XyLoc Solo for standalone and small
workgroups consists of the XyLoc client
software and a XyLoc Lock and Key.
Highlights include:
- Full-time
24-hour security that is easy to install,
implement and manage
- Standards-based
design promotes compatibility and third-party
development of value-added modules
- Robust
and scalable - from workgroups to the
enterprise
- Extensible
platform enables asset tracking and other
future capabilities
XyLoc
Enterprise makes the central management
of larger XyLoc installations possible.
At the heart of XyLoc Enterprise is the
XyLoc Security Server (XSS) software
that delivers centralized security protection,
monitoring and management to enterprise
PCs from anywhere in the world. XSS is a
robust, browser-based architecture that
allows security managers to easily administer
and centrally manage convenient security
throughout an enterprise. The XSS architecture
supports the ability to control and manage
both the intellectual and physical computing
assets.
The
XSS consists of software that runs on an
industry standard Windows Web server and is accessible from any Web browser.
Featuring a central authentication authority
and preference database for each user, the XSS software makes administration, installation
and ongoing support simple for systems administrators.
The XSS operates over an organization's
LAN, Intranet, VPN or the Internet using
industry standard protocols, encryption
and database structures. An authorized administrator
can control user's access rights on any
XyLoc-protected computer, even remotely
across the Internet.
Application Integration
provides a convenient
way to secure access to individual applications
and offer increased personalization at the
same time. Available as a add-on module to
XyLoc Enterprise or XyLoc MD, Application
Integration adds functionality to
the XyLoc system, providing users with an
automatic and secure way to log on to the
applications they use most, without having
to remember different passwords for each
application. XyLoc Enterprise AI can provide
customized application integration in a
variety of enterprise computing environments.
Up to 32 different applications can be configured
for each user on the XyLoc system, and virtually
any type of application can be integrated:
browser-based, server-based,and even
terminal emulation applications.
XyLoc
MD was created specifically for the
healthcare industry. XyLoc MD takes the
central management of XyLoc Enterprise,
optional Application Integration and adds the ability to support many
different types of users accessing a limited
number of computers. The unique multi-user
Kiosk Account feature of XyLoc MD provides
an effective solution for fast, secure access
to information in a multi-user, shared computer
environment typical of the medical industry
- all while keeping a detailed log of who
has used which PC and when. Whenever a logged
on user steps away from a workstation, it
is automatically secured. When several authorized
users are in a XyLoc-protected computer's
active zone, the system uses an intuitive
interface to allow the quick selection of
the intended user. XyLoc MD utilizes the
application integration functionality, so
a doctor's applications follow him from
computer to computer as he does his rounds.
|
|
|
|
|
|
|
|
|
| |
XyLoc
Security Server features include: |
|
|
|
|
|
|
|
|
| |
| Standard-Based |
Uses
tools and protocols already built into
your existing computer environment;
Standard Web server and browser, TCP/IP,
Secure Sockets Layer (SSL) encryption |
| High
Capacity/Scalability |
Supports
a few to tens of thousands of XyLoc
systems |
| Thin
Client Architecture |
Small
footprint eases enterprise-wide deployment
and maintenance |
| Encrypted
Local and Central User Repositories
|
User
data on both local PC and central server
speeds authentication and enables use
with portables; Manages and synchronizes
local client and central server databases;
Central data facilitates user moves,
adds and changes |
| Extremely
Fast Authentication |
Local
client database provides instantaneous
user access; Ad hoc users authenticated
over network in milliseconds |
| Customizable
Views/Interfaces |
Offers
interface templates to match administrator's
preference |
| Centralized
Auditing & Reporting |
Easily
creates reports and audit trails on
XyLoc usage |
| Co-existence
of Multiple XSS |
Multiple
XSS can reside within organization for
scalability and fail over |
|
|
|
|
|
|
|
|
|
| |
Other
XyLoc system features include: |
|
|
|
|
|
|
|
|
| |
|
Patented Full-Time Access Control
|
Continuously monitors for the presence
or absence of authorized users; Secures
PC when user leaves Active Zone, and
unlocks when user returns
|
|
Patented Proximity-Based ID and Authentication
|
Confirms the user's identity and verifies
authorized access to the PC based
on user's proximity to PC; does not
use timer.
|
|
XyCrypt™ (XyLoc Enterprise and MD)
|
XyLoc File Encryption prevents
unauthorized access to data files on
the hard drive of a notebook or
desktop PC; by
encrypting data files, creating an additional
and powerful level of information
security.
|
|
Easy, Hands-Free Operation
|
Automatically locks/unlocks PCs; no
cards or tokens to insert; ensures
high user compliance and acceptance
|
|
Kiosk Account Support (XyLoc MD only)
|
Supports multi-user desktops and shared
use of a single account (e.g. "Nurses"
or "Lab" accounts). Kiosk
accounts are created by adding additional
keys to an account with ability to
track individual users' access of
the account in the XyLoc activity
logs
|
|
Multiple OS Support
|
Windows 98, NT 4.0, 2000 or XP |
|
Multi-User Support
|
One XyLoc Key can be programmed to
unlock hundreds of Locks (for system
administrators or department managers)One
XyLoc Lock can support multiple Keys
(for shared PC environments)
|
|
Access Methods
|
Single factor security:
"Key only" modes - Hands-Free AutoLogon, Select User
Name, or Password-only (for system
override)
Dual factor security: Key
and password modes - Must Enter Password |
|
Speeds Network Access
|
Grants access to network and applications
before a user sits down at the PC
|
|
Scalable Deployment
|
Deploys incrementally to individual
PCs or portables, workgroups or enterprise-wide
|
|
Automatic Network Log-On and Log Off
|
Automatically logs user onto and off
of pre-configured network services;
maintains network sessions when the
user leaves Active Zone
|
|
Activity Tracking
|
Creates audit trails and event logs
|
|
Encrypted Two-Way Communication
|
Creates secure, tamper-resistant link
between key and lock; Prevents code-grabbing
or cloning
|
|
Undisrupted Work Sessions
|
Preserves work sessions and continues
background tasks (printing, downloading)
when computer is locked
|
|
Open Architecture
|
Compatible with and will enhance other
security methods, supports industry
standards including X.509 Digital
Certificates, SSL Encryption
|
|
Digital Certificate/E-Commerce Support
|
Protects digital certificates and
e-commerce site cookies stored on
local drives; Entrust-ready support
|
|
Programmable Range
|
User-definable Active Zone for maximum
flexibility
|
|
Enhanced Operating System Security
|
For Windows 95/98 Users: Secures
boot-up process to prevent overriding
system at boot-up through keyboard
commands (e.g., Safe Mode or CTRL
F5/F8)
|
|
Installation
|
Installs quickly using only one cable
and simple installation Wizard; Remote
software installation
|
|
|
|
|
|
|
|
|
|
| |
XyLoc
and Wireless Technology |
|
|
|
|
|
|
|
|
| |
XyLoc's
standard Lock and Key technology is based
on 300, 800 or 900 MHz radio signals, depending
on the country of installation. |
|
|
|
|
|
|
|
|
| |
About
Ensure Technologies… |
|
|
|
|
|
|
|
|
| |
Founded
in 1997 and headquartered in Ann Arbor,
Michigan, Ensure Technologies (www.ensuretech.com)
is an innovative developer of intelligent
security solutions designed to provide maximum
security with minimal impact on users. Ensure's
award-winning XyLoc family of products provides
the robust security a network needs, as
well as the personalization and convenience
users appreciate. From small engineering
workgroups to large hospitals with hundreds
of people accessing dozens of computers,
XyLoc ensures the security of the network,
the integrity of sensitive data, and user
satisfaction.
|
|
|
|
|
|
|
Ensure
Technologies, XyLoc, XyLoc Enterprise, XyLoc Enterprise
AI, XyLoc MD and XyCrypt are trademarks of Ensure
Technologies, Inc. All other trademarks and trade
names are the property of their respective companies.
|
|
|
|
|
|
