VIPO Proactive Protection Technology
VIPO (Valid Inside Permitted Operations) technology is based on system function call interception on the Ring 0 level of the operating system. The SafenSec driver is loaded ahead of all other applications, enabling it to intercept and block any system call as needed.
))
VIPO technology identifies, analyzes and can block the following types of action as required:
- Access to file system and registry objects
- Any application execution
- Network activities
A versatile rules engine enables administrators to explicitly identify which actions are to be blocked under what circumstances. Additional conditions that may influence a system’s behavior include, for instance, the time or frequency of the action analyzed. Beyond these basic rules, meta rules can be applied that define the analysis algorithm itself and the system response to various application actions during certain time periods.
For example, when an application tries to open multiple files with multiple passwords and then attempts to establish a network connection, this clearly indicates an attempt to steal passwords. Meta rules enable monitoring for and blocking of such activities.
The rule base comprises two parts:
- system rules which cannot be modified
- custom rules that can be created to meet specific requirements
System rules are created and continually maintained by SafenSoft engineers. These rules are designed to protect the operating system and well-known applications from known and unknown threats and conform to standard system operations. These rules form a foundation for the development of a comprehensive ruleset customized to the individual organization’s requirements.
Custom rules are defined by the system administrator and are designed to protect less-common or custom applications and privileged information. Custom rules are generally linked to corporate security policies and form part of the security enforcement and auditing process. A powerful and intuitive graphical user interface, built around the concepts of trusted applications and data confidentiality, is provided to assist in the development of these rules.
S.N.Safe&Software, 2004-2010. All rights are reserved.