Review
Last time, we presented four ways to manage client computers to protect corporate IT assets from damage caused by leaked information, computer virus infections, and illegal access by having administrators, not employees, properly manage client computers by:
- Preventing connections from unauthorized computers. - Don't allow connection
- Preventing the use of prohibited software. - Don't allow use
- Preventing the copying of sensitive information without permission. - Don't allow removal
- Finding suspicious activities. - Don't overlook
Now, in the second installment, we'll give you concrete advice on how to use JP1 to implement security solutions for client PCs.
How to use JP1 to implement a client PC security solution
Preventing connections from unauthorized computers. - Don't allow connection
If employees connect their own PCs to the company network to do work, the network might be infected with a virus, causing widespread damage and the leakage of company information stored on the employee's PC. JP1 allows you to flexibly manage client PCs by setting up both a simple system in which you can limit which computers have access to the company network and a quarantine network. You can use JP1 to create an environment that satisfies your requirements.
Preventing unauthorized client PCs from connecting to the company network in a simple system
JP1/Network Monitor automatically prevents unauthorized client PCs from connecting to the company network. You can use JP1/Network Monitor to register computers that are allowed to use the company network so that connections by unauthorized computers are automatically prevented. You only have to install management software on one computer in the subnet. No client software is required, and you can continue to use existing networks as you always have. We recommend JP1/Network Monitor for preventing the leakage of information by limiting which computers can connect to the company network, and by detecting and preventing connections by unauthorized computers in simple systems.
If you also install JP1/Network Monitor - Manager, you can:
- Use a specific GUI to manage information about the devices connected to the network.
- Register which devices are permitted in JP1/Network Monitor, specify environment settings, and search the connected devices.
- Manage event notifications that report the detection and prevention of connections by unauthorized PCs to the company network.
JP1/Network Monitor - Manager main window
Blocking computers that violate the security policy
When a client computer connects to the company network, JP1 automatically determines whether the computer violates the security policy, and then prevents connection to the network by any computer that does. For example, client computers that have no anti-virus software installed, or to which the latest security patches have not been applied, can be prevented from connecting to the company network. In addition, the required anti-virus software and the latest security patches can be automatically installed on client computers that have insufficient security, and then those computers can be connected to the company network again. This means that only client computers determined to be safe according to an already specified security policy are allowed to connect to the network, while client computers determined to be dangerous are relegated to a quarantine network to be corrected and restored.
Please refer to the Introduction to Quarantine System leaflet for more details on system configuration and related products.
Preventing the use of prohibited software. - Don't allow use
There's no end of stories about customer information and sales information being leaked outside enterprises by way of Winny or other file-sharing software. You can use JP1/SD to prohibit the use of software that might cause information to leak or that is not work related. When an employee attempts to start such software, the software is automatically determined to be prohibited, a warning message is displayed, and the software is prevented from starting up. You can prohibit or permit the use of software, allowing a level of control suitable for your user environment. You can also set up detailed security policies, such as by specifying that software can only be used, for example, during business hours from 8 am to 6 pm, or by specifying which user accounts or user groups allow the use of software.
Prohibiting or permitting the use of software
Preventing the use of easy-to-guess password
If anyone can log on to a client PC or multiple employees use the same login ID and password, the PC might be used without permission or someone might access the PC and steal information.
You can use JP1/CSC to make sure that Windows® passwords have been specified and that they are hard to guess.
Preventing the copying of sensitive information without permission. - Don't allow removal
The number of cases in which sensitive, company-internal information and customer information is saved to USB memory and then lost outside of the company, printed and brought home, or leaked is growing. Such problems occur if anyone can take internal information outside the company. You can use JP1/SD to limit the removal of such information by preventing both the copying of data onto removable media (such as CDs and USB memory) and the printing of data without permission.
JP1/SD setting policy window
Finding suspicious activities. - Don't overlook
Keeping records of computer and file operations
There will always be confidential information that employees must access, but administrators cannot set up a complete policy unless they can see how that information is handled. You can use JP1/SD to record detailed logs of who performs operations, when the operations are performed, and which operations are performed (including deleting files, printing, connecting to external media, or accessing websites) over time, and you can monitor operations from a specific viewer. This can help prevent unauthorized operations on client computers that cause information to leak, and make it easier to achieve operational transparency.
Operation logs to be recorded
Operation history
Conclusion
We've introduced a variety of information security policies that can be implemented by using JP1 to protect your IT assets. We hope that you found these examples useful. The policies described in this document are urgent, so please consider your options.
- Adobe®Reader® of Adobe Systems Incorporated (Adobe Systems) is required to view PDF documents.