Overview

LEMSS

Allowing only Whitelisted Applications to Execute

Lumension® Application Control provides the most effective endpoint protection against known and unknown applications and malware, including zero-day threats.

More than 2 million new malware signatures are now identified each month1. More sophisticated and zero-day attacks are also on the rise. But traditional security defenses, such as anti-virus, are not able to keep up. And the impact to organizations' bottom line is significant - malware driven costs can be as much as 50 percent of an organization's endpoint TCO due to increased help desk calls, reimaging costs, network downtime and lost employee productivity2.

Whitepaper

Intelligent Whitelisting

An Introduction to More Effective and Efficient Endpoint Security

Click to Download

 

Even the major anti-virus vendors have concluded that stand-alone anti-virus no longer provides an effective defense and that additional layers of security technology are needed to address the rising volume and sophistication of threats. Less than 20 percent of malware is identified within the first day of its existence and the detection rate only rises to 62 percent after 30 days3. Learn more on why you should not rely upon stand-alone anti-virus.

Not only is the volume and sophistication of malware increasing, but so is the number of applications downloaded and installed by employees – particularly with local admin user accounts. Whether intentional or not, this increase in 3rd-party application installations exposes the organization to new levels of risk. In today's socially networked and cloud-enabled business environment, employees require flexibility to use a variety of applications in order to effectively perform their job responsibilities. Learn more about how application control/whitelisting can help IT balance the productivity needs and effectively manage the risk associated with user access rights.

Endpoint TCO Increasing Due to Malware



Enhance Your Application Visibility - Gain complete visibility into all of the applications currently residing on your endpoint environment. 
 Software Demo: Getting Application Visibility

Quickly Define Application Whitelist Policies – Snapshot the endpoint environment to quickly define baseline application whitelist policies and then optimize policies before deployment by running in a monitor-log only mode. Software Demo: Simplifying Whitelist Creation

Effectively Enforce Application Whitelist Policies – Actively enforce defined application whitelist policies, rather than relying on self-policing.

Prevent Zero-Day Attacks – Automatically block zero-day attacks by default, without waiting for an anti-virus definition to be developed and provided and without waiting for the latest vulnerability patches.

Reduce Local Admin Account Risk – Ensure standardized system configurations by enforcing policies that enable only trusted and authorized applications to run – without taking away local admin rights.  Software Demo: Reducing Local Admin Risk

Ensure Complete Protection at All Times - Effectively prevent the installation and use of unauthorized software and the introduction and execution of malicious code regardless of whether or not the endpoint is connected to the organizational network.

Increase Productivity and Reduce TCO - Improve the stability and performance of the network environment and lessen operational support costs, such as IT help desk calls and endpoint reimages. With improved visibility across all applications running in the network, IT can identify and eliminate software conflicts that impact productivity and TCO.

Trust Engine automatically updates whitelists based on trust policies, to ensure continuous protection, and reduce IT burden and TCO.  Software Demo: Automating Whitelist Management

Denied Application Policy enforces a blacklist of unwanted or unauthorized applications, thus preventing them from executing Software Demo: Eliminating Unwanted Applications

Lumension® Application Control is available as a modular offering on the Lumension® Endpoint Management and Security Suite, and integrates with Lumension® Patch and Remediation and Lumension® AntiVirus to deliver a powerful and innovative application whitelisting solution, Lumension® Intelligent Whitelisting™.

 
Source:
  1. McAfee Labs, McAfee Threats Report, 2010
  2. Ponemon Institute, 2011 State of Endpoint Risk, 2010
  3. Cyveillance, Malware Detection Rates for Leading AV Solutions, August, 2010