Rex Global Check Point Integrity Clientless Security for Non-IT Controlled PCS

Home > Rex Global Solutions > Check Point Solutions > Check Point Integrity Family

Check Point Integrity Clientless Security

Clientless Security for Non-IT Controlled PCS

Disables Spyware, Trojans, Worms
Ensures Session Confidentiality
Enforces Security Policy Compliance
No Client Software Required
Secures Web Applications & SSL VPNs

OVERVIEW

Integrity Clientless Security protects enterprises from threats on PCs entering via Web-based applications and gateways, such as Microsoft Outlook Web Access, SSL VPNs or extranets, without requiring client software installation. It is the only product that provides the three essential components of clientless security: disabling spyware, ensuring session confidentiality, and enforcing security policy compliance before remote access is granted. By doing so, Integrity Clientless Security stops ID and password theft, prevents sensitive and proprietary data loss, restores network bandwidth, and improves IT and user productivity.

YOUR CHALLENGE

As the enterprise opens its network — giving employees, customers, consultants, business partners and suppliers remote access to applications and data—productivity and satisfaction can soar. But so can security risks. Spyware and other malicious code on remote access PCs can compromise IDs, passwords, data confidentiality, and network availability. IT departments have had limited ability to mitigate these risks because they usually cannot install client software on PCs outside their control.

OUR SOLUTION

Integrity™ safeguards your enterprise network from penetration by malicious code or targeted attacks with a combination of proactive protection for every network endpoint along with central policy management and enforcement. It allows you to easily develop, manage, and enforce unparalleled endpoint security for Total Access Protection. Integrity restores the confidentiality, integrity, and availability of enterprise data and critical systems without compromising IT or end user productivity. Your business can continue safely toward growth and profit objectives.

PROACTIVE ENDPOINT SECURITY

Check Point provides Integrity Clientless Security, an innovative solution to mitigate the risks posed by employee and guest endpoints accessing enterprise resources via the Web. Integrity Clientless Security delivers automatic spyware disablement, ensures session confidentiality, and enforces network access security policy via an easily downloaded browser plug-in. Your enterprise gets protected from spyware, keystroke loggers, and other undesirable software. The inherent risk of guest PC access is decreased, and network bandwidth and CPU cycles lost to adware and spyware activity are restored. The Integrity Secure Browser eliminates exposure of proprietary files left on public PCs using advanced file encryption and session cache cleaning.

Integrity Clientless Security is the first and only solution to provide spyware disabling, session confidentiality, and comprehensive security policy enforcement for remote access PCs. When Integrity Clientless Security is used with client-based Integrity products, it enables Total Access Protection for the enterprise. With Total Access Protection, the full spectrum of enterprise network users—employee and non-employee, remote and internal, wired and wireless—are protected. Comprehensive security in a small package Once the Integrity Clientless Security plug-in is downloaded, the end user immediately enters into a secure session using the Integrity Secure Browser. It scans PCs for spyware before users provide any log-in information for Web-based applications, gateways, and extranets. Using an optimal combination of signatures and heuristics, Integrity Clientless Security detects and disables keystroke loggers, Trojan horses, dialers, and other unauthorized processes that transmit confidential information outside the enterprise. In addition, it checks the security posture of the endpoint and enforces administrator-defined policy for updated antivirus, PC firewalls, patches, application versions, and other requirements before it grants access to a log-in page. Users who are out of policy compliance are offered links to self-remediation resources. Once back in compliance, they are allowed to log in.

Streamlined Management

Easy deployment and management are hallmarks of Integrity Clientless Security. It does not require IT to install software on endpoint PCs, and it can be configured by administrators in minutes. A simple configuration interface lets the administrator select which types of threats to scan for, which network access rules to enforce, and whether to restrict network access or only warn end users of detected threats.

Integrity Clientless Security provides logs of detected threats and policy compliance violations, by user, that administrators can use to design enforcement policies. To ensure ongoing efficacy, Check Point provides automatic server updates to threat detection signatures that end users receive automatically the next time they seek access.

Protected Corporate Information

Using Integrity Clientless Security’s Secure Browser, session files such as emails, attachments, cookies, and passwords are protected from unauthorized access. This prevents spyware from hijacking a user’s login credentials or stealing sensitive corporate information during or even after a session ends. Enterprises no longer need to worry about employees connecting into Web-based email using a third- party machine, such as an airport Internet kiosk PC. The cached session files are protected using advanced encryption during the browser session and then fully cleaned off the machine after the session completes. With this full data protection scheme, the possibility of sensitive data being uncovered later by unintended third parties is eliminated.

Flexible Risk Administration

Integrity Clientless Security provides numerous risk management and policy enforcement options for administrators, including:

Notifying the end user about detected spyware or other undesirable code that could not be disabled (such as third-party cookies), and providing guidance on removing the offending software.
Offering end users the ability to download an Integrity firewall-based client if they don’t have one installed, or installing the Integrity client automatically.
Optionally requiring the Integrity Secure Browser for remote access entry into a Web-based gateway.
Warning end users of certain detected threats and/or policy compliance violations without blocking network access. This less-stringent policy may be appropriate, for example, for customers accessing an enterprise e-commerce portal.
Turning off scanning for selected categories of threats, if desired.

Spyware is sometimes bundled with file sharing or other applications that guest users may not want removed from their PCs. By disabling spyware processes prior to network access rather than forcing removal of the software, Integrity Clientless Security protects the enterprise while respecting the choices of guest users when they’re not connected to the enterprise.

CheckPoint Integrity - Versatile rules-based policy enforcement provides multiple options for enforcing policy-based network access and pre-emptive disabling