Reconnex 6.0 Endpoint Agent is First to Deliver Comprehensive IP Protection to Every Endpoint "Back Door"
New Appliance Detects, Captures, Classifies, and Prevents Any Unauthorized I/O Activity—Even for Off-Network Users
MOUNTAIN VIEW, Calif., March 26, 2007 — Reconnex, the leader in data leak prevention appliances, today announced Reconnex 6.0 Endpoint Agent, which extends full discovery, monitoring, capture, and prevention capabilities to all enterprise endpoints, including mobile devices and removable media. The Reconnex 6.0 Endpoint Agent is the first “data-in-use” solution to deliver comprehensive endpoint Intellectual Property (IP) protection at every possible “back door” to the network.
The Reconnex 6.0 Endpoint Agent performs the following functions:
- Discovers, records, and prevents any unauthorized I/O activity—including transfers to external devices and file mailing—based on centrally defined policy
- Works with any removable media, including USB drives, CDRW, IEEE 1394, SCSI, ATA, PCMCIA, COM, and more
- Secures all types of networks, including wired corporate LANs, WiFi or BlueTooth hotspots, and infrared ports and networks
- Inspects every port and channel, including Email (Outlook, Lotus), Webmail, HTTP, Chat, FTP, SMTP, and more
- Prevents unauthorized file encryption, including encryption with HTTPS and PGP
- Captures all unauthorized I/O incidents—even those performed off-network—to facilitate integrated policy definition and incident management
According to recent study titled “Intellectual Property Rules” by Enterprise Strategy Group (ESG), 43 percent of intellectual property leakages occur from laptops and USB devices.
"Extending the safety net to all endpoints on a network to prevent the loss of sensitive data can be a difficult proposition," said Faizel Lakhani, vice president of marketing at Reconnex. "Many organizations are concerned that IP can leave corporate assets through WiFi, Bluetooth, and even printers. Reconnex 6.0 Endpoint Agent delivers content-based protection in fluid environments such as these, where other data-in-use alternatives fall short."
Log, Warn and Educate, Block, Capture: Comprehensive IP Loss Prevention
Unlike competitive products, Reconnex 6.0 Endpoint Agent does more than simply monitor for policy violations at the endpoint—it prevents unauthorized I/O operations from succeeding. The solution provides content-aware IP monitoring and protection based on multiple identity factors.
- Predefined rule sets for compliance policy
- Document fingerprinting that can even match plagiarized or modified content
- Registered concepts such as keywords
- Context and custom rules that tie actions to network roles
Administrators input policy definitions through Reconnex’s inSight centralized policy manager, and inSight pushes the definitions out to all monitored network locations for data at rest, data in motion, or data in use.
Whenever an endpoint activity triggers any of the identity factors, Reconnex 6.0 Endpoint Agent logs the incident and notifies network security personnel; warns the user of the potential policy violation, to educate him or her against future errors; blocks any sensitive content from leaving the network; and then captures the incident context for later review and analysis. This capability extends to any endpoint on the network.
For managed endpoint devices, Reconnex 6.0 Endpoint Agent acts like a mini Reconnex iGuard to secure devices used outside the corporate LAN environment. Whenever any I/O activity is initiated on a mobile device, the Endpoint Agent performs the log, warn, block, and capture functions just as if the user is resident on the LAN. When the user re-connects to the LAN, the agent forwards all incident records back to the central incident repository, managed through Reconnex’s inSight console. Likewise, inSight forwards any new policies to the endpoint.
Once a managed endpoint device is on-network, iGuard appliances at network ingress/egress points assume all endpoint IP protection as part of a centralized IP security strategy. To ensure that even unmanaged devices are secured against IP loss, the Reconnex 6.0 Endpoint Agent appliances constantly monitor all stored data for risks, including newly created and downloaded data.
The following matrix illustrates how the capabilities of Reconnex 6.0 Endpoint Agent stack up against alternatives:
|
Reconnex 6.0 Endpoint Agent |
Device Control |
Endpoint Agents |
DLP Products |
Content-aware detection of IP loss to USB and other removable media |
Yes |
No |
Yes |
Limited devices |
Protection against IP loss from unmanaged hosts, servers, and network devices |
Yes |
No |
No |
Yes |
Content-aware detection of IP loss via public networks (hotspots, home), Webmail, IM, and more |
Yes |
No |
Yes |
No |
Prevention of IP loss via removable media and/or public network access |
Yes |
Limited |
Yes |
No |
User alerts to and education about potential IP loss via removable media and/or public network access |
Yes |
Limited |
Limited |
No |
Unified policy and administration workflow: data in motion, data at rest, data in use |
Yes |
No |
No |
Yes |
Pricing and Availability
The Reconnex 6.0 Endpoint Agent is available at the end of April. Pricing, which starts at $25,000, is dependant on the number of modules purchased and number of users protected.
Multimedia Support
About Reconnex
Reconnex is the leader in information monitoring and protection appliances designed for any organization - including enterprises, government agencies or educational institutions - that wants to protect its brand, maintain compliance, or secure sensitive information. Reconnex's simple-to-deploy appliance delivers accurate detection while protecting an enterprise before, during, and after any threat to corporate privacy or intellectual property. A privately held company based in Silicon Valley, Calif., Reconnex protects information for over one million users today. For more information about Reconnex, visit www.reconnex.net or call 866-940-4590.
