Your Cart
Subtotal:
£0.00
View/Edit Cart
Checkout Now

Application Whitelisting Solution

About Application Whitelisting Solution

Application whitelisting is the process of allowing certain applications on a network. An application whitelist contains a list of permitted programs on the network. You can’t open, run, and use apps that aren’t on this whitelist.

This application whitelist is always checked whenever a user tries to run a program. If the app is not listed, then the requesting user can’t open, run, and use it. They get an “access denied” or similar error message. If the app is on the whitelist, then they can run, open, and use that program.

An application whitelist contains the programs which employees have access to. Some people call these as client-approved applications. The management uses an application whitelisting approach because of many reasons. One is to avoid a security breach from happening.

Imagine the consequences of an employee downloading a program from the internet. This act may be intentional or not. In either case, the program downloaded could be malware. Implementing an application whitelisting approach would prevent this scenario from happening.

Workflow Based Application Whitelisting

Airlock enables you to easily create and manage secure whitelists in dynamically changing computing environments.Unlike signature based file blocking (black listing) such as antivirus,

Airlock only allows files it has been instructed to trust, to run. If the file is not in the whitelist it cannot run, regardless if a file is known good, bad or indifferent. This proactively prevents malicious code from running on your system, before any damage occurs.

Simple Deployment, Operation and Maintenance

Until now, Application Whitelisting has been difficult to deploy and maintain within an organisation. Airlock has been developed from the ground up by security professionals to solve real world problems with Application Whitelisting.

Airlock incorporates proven and effective workflows, designed for ease of use in dynamically changing enterprise environments. Application Whitelisting with Airlock is a simple, repeatable process.

Realtime Reporting, Detection and Response

Airlock provides centralised visibility over all files within in an organisation. Discover when a file was first seen in your environment, where it came from and how it was executed.

Airlock also tracks all network communication generated by files; search for a domain or IP address and find the file that made the call.

Lightweight

Traditional security offerings typically rely on large endpoint agents and the delivery of bulky virus definitions to function. Often these definitions can be upwards of two hundred megabytes in size for each endpoint.

Airlock’s Application Whitelisting solution utilises a lean seven megabyte agent, with small policy sizes and next to zero impact on endpoint resources.

Prevent Ransomware and Targeted Cyber Intrusions

Modern attacks involve the modification of files, or the creation of unique malware to avoid detection by traditional security software. “99% of malware hashes are seen for only 58 seconds or less. In fact, most malware was seen only once. This reflects how quickly hackers are modifying their code to avoid detection.” As each customer makes decisions regarding what files they trust in-house, each deployment is unique. This prevents cyber-criminals from testing their attacks before attacking their targets.

Meet Security Compliance

Application Whitelisting is recognised by Government agencies around the world as a leading security strategy to prevent targeted cyber intrusions. It also assists compliance with PCI-DSS2 and HIPAA.

Airlock exceeds compliance requirements, even when placed against the strictest standards; the Australian Signals Directorate Strategies to Mitigate Cyber Security Incidents and the NIST Guide to Application Whitelisting.

LinkedIn
LinkedIn
Share
WhatsApp