Lumension Security Is Awarded Patent for its Innovative Shadowing Technology as a Key Component to its Sanctuary® Device Control Data Leakage Prevention (DLP) Solution
Shadowing Technology Ensures Data Security and Policy Compliance by Enabling Enterprises to Actively Monitor and Audit all Data Transferred to and from Removable Media
Scottsdale, AZ, Jan. 4, 2008
Lumension Security™ Inc., the leading global security management company formed by PatchLink® Corporation and SecureWave®, today announced it has received a significant patent for its data shadowing technology, a key component to Lumension Security’s Sanctuary Device Control endpoint security solution. The shadowing feature enables organizations to monitor all the information transferred to or from removable media while capturing a full copy of that data, providing a comprehensive audit trail that is part of a robust security and compliance posture.
“Monitoring sensitive proprietary information - especially when it is being moved - is vital for effectively securing data and demonstrating compliance. Virtually all organizations track data being sent via email, but very few monitor what is written to or read from removable storage media,” said Mike Wittig, president and CTO of Lumension Security. “Our industry-leading Sanctuary Device Control solution combines whitelisting and granular policy enforcement with this critical data shadowing functionality to provide our customers with a powerful tool for preventing data leakage. Being awarded a patent for this technology demonstrates its innovation, maturity and value as organizations across the globe continue to deploy Sanctuary as a key constituent to their data security and compliance infrastructure.”
According to the Ponemon Institute, 53 percent of organizations have no way of knowing what data was on a lost or stolen device. Sanctuary Device Control’s data in/out shadowing capability monitors, controls and audits the information that users may copy to or from removable media to their PCs and laptops. Administrators are able to capture the complete binary code of the data transferred and save it on a centralized server. This can be assimilated to an entire mirror copy of the data and used for auditing purposes. The patented technology also allows the logging of only file names where applicable, offering a less intrusive approach to monitoring data transfers. This audit log is invaluable for measuring and enforcing policy compliance, and it helps as proof of compliance with SOX, HIPAA, the Gramm-Leach-Bliley Act and other industry and federal regulations.
“While the use of consumer gadgets and other peripherals presents serious security concerns, simply banning all removable media is an impractical solution because many devices serve a valuable business purpose. Lumension Security’s Sanctuary enables us to set and enforce acceptable device use policies to make sure employees have access to the tools they need without jeopardizing sensitive company or patient data,” said Rob Israel, CIO of John C. Lincoln Health Network, a not-for-profit health care organization based in Phoenix, Ariz. “Sanctuary’s Device Shadowing capability adds an extra layer of control by tracking all the information written to or read from a device, and it even captures a full copy of that data in a central database. Not only is the audit log invaluable in measuring and enforcing policy compliance, it also bundles the information we need to assist with HIPAA compliance.”
For more information about the shadowing technology, Lumension’s Device Control and data leakage prevention, please visit: http://www.lumension.com/Products/device-control-software.aspx
About Lumension Security™, Inc.
Lumension Security, formed by the combination of PatchLink® Corporation and SecureWave® S.A., is a recognized, global security management company, providing unified protection and control of enterprise endpoints for more than 5,100 customers and 14 million nodes worldwide. Leveraging its proven Positive Security Model, Lumension enables organizations to effectively manage risk at the endpoint by delivering best-of-breed, policy-based solutions that simplify the entire security management lifecycle. This includes automated asset discovery, vulnerability assessment, remediation and validation; application and device control; extensive policy compliance reporting; and integration with leading network access control solutions. Headquartered in Scottsdale, Arizona, Lumension has offices worldwide, including Virginia, Florida, Luxembourg, the United Kingdom, Spain, Australia, Hong Kong and Singapore. PatchLink, now Lumension, was founded in 1991 by Sean Moshir. More information can be found at www.lumension.com.