Internet Security Software Technology
Security
  Products    Support    Partners    Press center    Useful info    Promo actions    About us  

Personal Computers Protection

Corporate Networks Protection

Technologies

V.I.P.O. Technology

Technology sale

Safe`n`Sec 3.5 Test Methodology

User manual

Comments

Independent tests

Archive of personal protection products

VIPO Proactive Protection Technology

VIPO (Valid Inside Permitted Operations) technology is based on system function call interception on the Ring 0 level of the operating system. The SafenSec driver is loaded ahead of all other applications, enabling it to intercept and block any system call as needed.

VIPO technology identifies, analyzes and can block the following types of action as required:

  • Access to file system and registry objects
  • Any application execution
  • Network activities

A versatile rules engine enables administrators to explicitly identify which actions are to be blocked under what circumstances. Additional conditions that may influence a system’s behavior include, for instance, the time or frequency of the action analyzed. Beyond these basic rules, meta rules can be applied that define the analysis algorithm itself and the system response to various application actions during certain time periods.

For example, when an application tries to open multiple files with multiple passwords and then attempts to establish a network connection, this clearly indicates an attempt to steal passwords. Meta rules enable monitoring for and blocking of such activities.

The rule base comprises two parts:

  • system rules which cannot be modified
  • custom rules that can be created to meet specific requirements

System rules are created and continually maintained by SafenSoft engineers. These rules are designed to protect the operating system and well-known applications from known and unknown threats and conform to standard system operations. These rules form a foundation for the development of a comprehensive ruleset customized to the individual organization’s requirements.

Custom rules are defined by the system administrator and are designed to protect less-common or custom applications and privileged information. Custom rules are generally linked to corporate security policies and form part of the security enforcement and auditing process. A powerful and intuitive graphical user interface, built around the concepts of trusted applications and data confidentiality, is provided to assist in the development of these rules.

 

Print this page




 
Information

About Safe’n’Sec

Comparative analysis of computer security solutions

Intrusion prevention systems – these are based on proactive protection technologies, which allow prompt identifying of threats and preventing any damage...

From Wikipedia

Intrusion-prevention system

 

»»»  Looking  for  resellers  worldwide  «««
Safe’n’Sec  >  Products  >  Technologies

Site Map  |  Search  |  Contact Us  |  License Agreements © S.N.Safe&Software, 2004-2010. All rights are reserved.