Enterprise Data Loss Prevention & Device Control

DeviceLock to evolve into a complete DLP platform for local sync with personal mobile devices

DeviceLock, Inc. unveils its plans to augment its device/port control capabilities with more synchronization protocol filtering, building a comprehensive endpoint data leakage prevention solution for local sync communications between corporate computers and personal mobile devices.

London, England April 3, 2008 DeviceLock, Inc. (formerly SmartLine Inc) today outlined a product plan that includes building comprehensive endpoint data leakage prevention (DLP) for local sync connections into DeviceLock. Already a dominant product among corporate customers who want to manage access to popular points of vulnerability like workstation USB ports and CD drives, DeviceLock software is evolving to cover a full range of mobile device threats, including the possibility of loosing valuable data when users sync up their devices at work. DeviceLock already has an embedded local synchronization protocol filtering feature that supports Microsoft ActiveSync, Windows Mobile Device Center, and HotSync protocol filtering for any Windows Mobile or Palm based mobile device. Eventually, DeviceLock will offer centralized control over a wider range of local synchronization protocols, and the DeviceLock interface will evolve to support even more mobile-device-related permissions. Today every click on a Sync button risks the loss of highly-valued corporate data. Yet, personal mobile devices are just too popular and promising as productivity tools to ban. So organizations are challenged to put in place policies and enforcement technologies that can control and trace the action. Our customers are telling us that they see weakly protected local sync communications among their most serious security problems going forward, explained Ashot Oganesyan, DeviceLock Founder and Chief Technology Officer. If local sync filtering is not built on top of drive/port access control, protection is going to be weak. With our approach, DeviceLock customers can look forward to having reliable, centralized control over local synchronization connections between corporate computers and personal mobile devices with the level of ease and flexibility they are accustomed to with DeviceLock.

DeviceLock enables security administrators to centrally and granularly define which types of data the specified users or groups are allowed to synchronize between corporate PCs and their personal devices. These data types include files, pictures, calendars, emails, tasks, notes, and other sync protocol objects. Using DeviceLock it is possible to detect the presence of any mobile device regardless of which local interface it is connected to. In addition, an administrator can centrally block or allow the installation and execution of applications on corporate mobile devices. On top of all this, detailed centralized logging, shadowing, reviewing and reporting of all types of data copied between PCs and mobile devices are supported.

DeviceLock presented its Local Sync Data Leakage Prevention (DLP) architecture at the Infosecurity Europe 2008 press-conference held in January in London, U.K. The key component Local Sync Filtering is being actively developed by DeviceLock on the basis of its patent-pending technology and delivered to the market as a feature of DeviceLock software. A white paper that describes the business need and the vision in detail is available at www.devicelock.com/dl/LocalSyncWP.pdf.

Further plans include the use of DeviceLock software as a basis for developing a complete Local Sync DLP solution. The plan calls for phased integration of internally designed functional components, as well as stack elements obtained through strategic technology partnerships.

More on the Mobile Threat

Mobile devices can import data through three channel types: network applications, removable memory cards, and local connections to personal computers (PCs). Today, there are plenty of file type detection and content-based filtering agents for preventing data leakage to mobile devices through network applications like email, web-browsing, file transfer, and instant messaging. The same types of data filtering technologies are integrated in endpoint device/port control products to reliably block detected leaks in data uploaded from PCs to removable memory cards.

However, local data synchronizations between mobile devices and PCs do not use network application protocols, nor do they interact with office applications as is the case with network applications and removable storage devices. This means that no existing file type detection or content-based filtering solution can control data flow through local connections from PCs to mobile devices.

In this situation, the only available method of eliminating data leakage through local sync is to completely block mobile device connections to the PC at the interface or port level. But even this brute method is not always possible because most existing device/port control products cannot even detect the presence of a mobile device if it is connected to the PC through a non-USB port (e.g. Bluetooth or COM).

DeviceLock can detect mobile devices connected to any port or interface today, and its local synchronization protocol filtering feature already supports Microsoft ActiveSync, Windows Mobile Device Center, and HotSync filtering for any Windows Mobile or Palm based mobile devices. More protocols will be supported in the future.

More on DeviceLock

Featuring a comprehensive central management platform fully integrated with Microsoft Active Directory and Windows NT/2000/XP/2003/2008/Vista support, DeviceLock enables users to precisely control, online monitor, shadow-copy, log, and analyze end-user access to all types of devices and local ports on PCs including physical and virtual printers, as well as block hardware keyloggers. To protect corporate data on removable storage devices DeviceLock integrates with leading encryption products from PGP, Lexar, and TrueCrypt.

About DeviceLock, Inc.

DeviceLock, Inc., is a worldwide leader in endpoint device control security for organizations that rely on Microsoft technologies. DeviceLock software is currently installed on more than 3 million computers in more than 55,000 organizations around the world including corporate customers from financial institutions, telecommunications companies, state and federal government agencies, classified military networks, and educational institutions. DeviceLock, Inc., is an international organization with offices in San Ramon (California, US), London (UK), Ratingen (Germany), Moscow (Russia) and Milan (Italy).


Press kit is available at: www.devicelock.com/press_kit.html

Download Evaluation Copy of DeviceLock from: www.devicelock.com/download/devicelock.zip

Program Information URL: www.devicelock.com/dl/