| |
|
|
| |
|
|
|
| |
1.
How is
XyLoc different than other traditional security methods
such as smart cards, biometrics, etc.? |
|
|
|
|
|
|
|
|
| |
In
addition to performing identification and authentication
functions like traditional security methods, XyLoc's
intelligence constantly monitors for the presence or
absence of authorized users. XyLoc's full-time access
control technology addresses the major vulnerability
inherent in all existing security methods - they are
gatekeepers that protect the information only at the
point of entry: the initial logon process. Other security
solutions are not "smart" enough to recognize that users
are not in control of their computers at all times after
logon. After users have entered their password, inserted
their token or placed their finger on the reader and
they have been identified and authenticated, the gate
is wide open and information assets are up for grabs
the minute the user walks away from the PC.
Top
|
|
|
|
|
|
| |
|
|
|
| |
2.
Is XyLoc
compatible with my existing security methods? |
|
|
|
|
|
|
|
|
| |
Yes.
XyLoc can either be used to initiate a company's security
policy, or enhance and build upon an existing security
environment. XyLoc actually improves existing security
measures by adding another layer of protection from
damage, data theft or unauthorized access. The XyLoc
software sits on top of the operating system, and even
closes security holes in Windows 95/98 and Windows 2000
environments in addition to providing superior access
control.
Top
|
|
|
|
|
|
| |
|
|
|
| |
3.
Does
XyLoc eliminate the need for traditional passwords? |
|
|
|
|
|
|
|
|
| |
This
depends on the organization. XyLoc adds a layer of security
above and beyond the use of passwords. Passwords verify
users only initially, leaving a network thereafter open
for security breeches and attacks. XyLoc uniquely addresses
the window of vulnerability that opens after the point
of logon, such as when a user leaves the computer and
data remains unprotected to unauthorized view or access.
However, XyLoc does offer dual-factor authentication
utilizing a password in addition to the XyLoc Key.
Top
|
|
|
|
|
|
| |
|
|
|
| |
4.
Does
XyLoc incorporate encryption? |
|
|
|
|
|
|
|
|
| |
Yes.
The continuous communication between XyLoc's Lock and
Key is encrypted to protect the communication link between
the two devices. In addition, XyLoc encrypts key files
stored on the hard drive that relate to XyLoc's operating
characteristics, preventing anyone from circumventing
or overriding the XyLoc system.
Top
|
|
|
|
|
|
| |
|
|
|
| |
5. Can
one XyLoc-equipped computer support multiple Keys? |
|
|
|
|
|
|
|
|
| |
Depending
on configuration, a single XyLoc Key can unlock one
or multiple computers. For example, a system administrator's
Key can be authorized to operate every XyLoc system
in the company or the system administrator can authorize
a manager's Key to work on every computer in a specific
department.
Top
|
|
|
|
|
|
| |
|
|
|
| |
6. What
if I lose or forget my XyLoc Key? |
|
|
|
|
|
|
|
|
| |
In
the event of Key loss, XyLoc is equipped with an override
password that is chosen during the initial installation.
This override password can be set to operate for a specific
number of entries or time period. Alternatively, an
administrator can issue a temporary Key or deactivate
the old Key and issue a new Key.
Top
|
|
|
|
|
|
| |
|
|
|
| |
7. What
if my key is stolen? |
|
|
|
|
|
|
|
|
| |
Most
organizations will choose to administer XyLoc so that
users are required to enter a password as well as possess
their XyLoc in order to logon when returning after a
set period of time. If someone else possesses your XyLoc
Key, it is useless without also knowing your password.
If your Key is stolen, you can access your computer
using a special override password if one has been administered.
If not, your help desk will be able to issue you a new
XyLoc Key and disable the stolen Key.
Top
|
|
|
|
|
|
| |
|
|
|
|
|
| |
Yes.
Although XyLoc utilizes radio frequencies, the transmitter
puts out a weaker signal than many common household
devices. In fact, XyLoc's signal is less than one quarter
of the leakage permitted in a personal computer as a
by-product of its normal operation.
Top
|
|
|
|
|
|
| |
|
|
|
| |
9. What
is the battery life of a XyLoc Key? |
|
|
|
|
|
|
|
|
| |
Batteries
typically last between one and two years, depending
on the type of use.
Top
|
|
|
|
|
|
| |
|
|
|
| |
10. How
is XyLoc installed? |
|
|
|
|
|
|
|
|
| |
Installing
a XyLoc system is very easy. The Lock is simply plugged
into either a serial or USB port. The XyLoc client software
can be loaded from a CD, downloaded from the XyLoc Security
Server, or can be included in your image for mass distribution
to all the PCs on your network. XyLoc is compatible
with desktop or portable PC's
running running Windows 98, Windows
NT 4.0 with SP 4, Windows XP
or XP embedded thin client .
Top
|
|
|
|
|
|
| |
|
|
|
| |
11. Can
XyLoc be bypassed? |
|
|
|
|
|
|
|
|
| |
It
would very difficult, if not impossible, to defeat XyLoc.
Booting in Safe Mode, unplugging the Lock, or even removing
the hard drive cannot defeat XyLoc. Of course, administrators
can define applicable overrides for emergency access.
Top
|
|
|
|
|
|
| |
|
|
|
| |
12. What
radio frequencies does XyLoc work with? |
|
|
|
|
|
|
|
|
| |
XyLoc's
standard Lock and Key technology is based on 300, 800
or 900 MHz radio signals, depending on the country of
installation.
Top
|
|
|
|
|
|
| |
|
|
|
| |
13. How
does XyLoc help my organization in the case of an audit?
|
|
|
|
|
|
|
|
|
| |
Every
XyLoc product keeps a detailed event log and audit trail,
so you can profile the system's use in the case of an
audit. Every time a user logs on to the network - whether
they gain entry with their XyLoc Key or with an override
password - XyLoc records the action. Every time a user
steps away and activates XyLoc's automatic locking mechanism,
the software records the event. However many users are
accessing however many different computers, XyLoc keeps
a record of who accessed which machine and at what time,
as well as many other details about the system.
Top
|
|
|
|
|
|
| |
|
|
|
| |
14. How
does XyLoc help my organization reach HIPAA compliance?
|
|
|
|
|
|
|
|
|
| |
The
proposed HIPAA regulations will require healthcare organizations
to implement administrative, physical and technical
procedures and safeguards to guard the integrity, confidentiality
and availability of patient data. Access control policies
and procedures will play a large part in HIPAA compliance.
XyLoc MD's proximity-based access control helps organizations
prepare for the forthcoming final HIPAA regulations
without forcing healthcare works to engage in lengthy
logon/logoff procedures necessary to ensure network
and patient data security.
The
proposed regulations call for organizations to implement
physical access controls, guidelines for workstation
use and physical security of workstations to prevent
unauthorized access of information. The guidelines currently
call for information access control and auditing capabilities.
XyLoc MD was designed with these requirements in mind,
and provides the heart of a complete security solution
that meets all of the HIPAA requirements.
Top
|
|
|
|
|
|
| |
|
|
|
| |
15. How
does XyLoc help my organization's users comply with information
security protocols? |
|
|
|
|
|
|
|
|
| |
XyLoc
makes security convenient for users, so they are happy
to comply. XyLoc is flexible enough to make the system
as convenient for users as you want. XyLoc can prompt
users to select their username and require a password,
or allow them to be automatically logged as they approach
a computer.
Furthermore,
XyLoc can determine when a security protocol is not
being followed. For instance, XyLoc can determine when
a Key is dormant, and therefore not being worn by the
user. It can be configured so that if a user removes
his Key for a few minutes, XyLoc locks access to his
machine. Features like this ensure that users comply
with security protocols with very little effort on their
part.
Top
|
|
|
|
|
|
