Enterprise Data Loss Prevention & Device Control

DeviceLock Adds Content Filtering and Network Control to Its Endpoint DLP Software

London, UK April 26, 2010 DeviceLock, Inc., a worldwide leader in endpoint data leak prevention software solutions, today announced the beta launch of DeviceLock 7.0, the first version to incorporate essential content filtering capabilities and control over network communications. In addition to its best-in-class, full-coverage port/peripheral device access control functionality, DeviceLock 7.0 is comprised of two new separately licensed components: ContentLock, a content monitoring and filtering module and NetworkLock, a network communications control module. The complete package delivers an unprecedented level of performance among endpoint DLP solutions in its price range. DeviceLock will showcase Version 7.0 in beta release at Infosecurity Europe 2010 in London on April 27-29, 2010.

By building the most in-demand content filtering capabilities on top of DeviceLocks context-based access controls weve made DLP practical for the mainstream corporate market and affordable for organizations of any size and budget, including small and medium-sized businesses, said Ashot Oganesyan, DeviceLock CTO and Founder. The endpoint DLP market has been slow to develop, not because enterprises dont understand the need to better control the flow of sensitive data, but because they perceive DLP as overly expensive and complicated. While some early adopters of content analysis technology have gone from zero to seemingly comprehensive coverage of potential channels of leakage, this has involved huge upfront investment and great reported frustration with the complexity of DLP deployment and maintenance. DeviceLock 7.0 offers a more gradual path off the DLP sidelines by moving up from port and device control to a progression from necessary to enhanced content-aware controls over the data that users transfer from and to corporate endpoint computers.

Recognizing more than eighty file formats and data types, ContentLock extracts and filters the content of data copied to removable drives and plug-n-play storage devices, as well as that transmitted over other input/output channels on endpoint computers. NetworkLock adds port-independent network protocol and application detection and filtering, message and session reconstruction with file, data, and parameter extraction, as well as event logging and data shadowing.

By integrating ContentLock and NetworkLock capabilities, DeviceLock 7.0 supports content monitoring and filtering for the most popular network protocols and applications:

  • Plain and SSL-protected SMTP email communications with messages and attachments controlled separately;
  • Web access and other HTTP-based applications including content inspection of encrypted HTTPS sessions specifically, webmail and social networking applications like Gmail, Yahoo! Mail, Windows Live Mail, Facebook, Twitter, LiveJournal, LinkedIn, MySpace, Odnoklassniki, and Vkontakte;
  • Instant Messengers including ICQ/AOL, MSN Messenger, Jabber, IRC, Yahoo! Messenger, Mail.ru Agent;
  • File transfers over FTP and FTP-SSL protocols;
  • Telnet sessions.

In the same effective way that DeviceLock currently integrates with TrueCrypt, PGP, and other removable device encryption products, DeviceLock 7.0 will support the Windows 7 native data encryption solution for removable drives BitLocker To Go. Hence, DeviceLock customers can use Microsoft-backed data encryption technology with DeviceLock on their Windows 7 endpoints at no additional cost. As BitLocker To Go can be centrally managed via Microsoft Active Directory like DeviceLock, their combination delivers to customers all the capabilities of endpoint DLP with built-in removable media encryption while offering both functional and significant price advantages.

Content filtering brings new efficiency and scalability to DeviceLocks data shadowing function across all endpoint data channels including removable and PnP storage devices, network communications, local synchronizations with smartphones, and document printing. Now customers can filter recorded data streams down to just those pieces of information meaningful to security auditing, incident investigations and forensic analysis before saving in the shadow log. This tremendously reduces storage space and network bandwidth requirements for shadow log delivery to the central database.

DeviceLock 7.0 is designed to seamlessly scale from small to large installations and ease DLP deployment and management. Customers can enhance their endpoint data security with content-aware and network control capabilities through the same well-proven MMC-style management interface instantly familiar to Windows security administrators. Most new users can learn and configure DeviceLock in just a few days. With DeviceLock Group Policy Manager, a custom-made MMC snap-in for Windows Group Policy Object Editor, DeviceLock agents can be deployed, fully managed and maintained across the organization from within an existing Active Directory domain. Yet the agents run transparently and do not require user involvement in any administrative procedures.

DeviceLock 7.0 will be priced on a functional basis. There will be no change in price for DeviceLocks local port and peripheral device access control component with this version, while it adds the significant value of BitLocker To Go encryption support. Customers interested in the ContentLock and NetworkLock components will be able to deploy their DLP functionality incrementally, simply turning on additional capabilities as security requirements demand and budgets allow.

The commercial release of DeviceLock 7.0 is scheduled for the last quarter of the year.

About DeviceLock, Inc.

Since its inception in 1996 as SmartLine, DeviceLock, Inc. has been providing endpoint device control and data leak prevention software solutions to businesses of all sizes and industries. Protecting more than 4 million computers in more than 60,000 organizations worldwide, DeviceLock has a vast range of corporate customers including financial institutions, state and federal government agencies, classified military networks, healthcare providers, telecommunications companies, and educational institutions. DeviceLock, Inc. is an international organization with offices in San Ramon (California, US), London (UK), Ratingen (Germany), Moscow (Russia) and Milan (Italy).