29-September-2014

Endpoint Protector 4 Appliance - Update

(Version 4.4.0.4)

Server Version: 4.4.0.4

Improvements:

Endpoint Protector Server

• The option to exclude certain file extension from the Content Aware Protection Policies and File Shadowing has been added. This will increase productivity, further eliminate redundant file scanning and reduce false positives
• Custom System Alerts can now be created. A wide range of e-mail alerts can now be set up, providing information about APNS, Updates & Support, Device Control Logs, Device Control & Content Aware Log Amounts, Server Disk Space, Percentage of licenses already used, etc.
• Predefined System Alerts have been extended, ensuring e-mails containing critical information reaches the Admins even if Custom System Alerts have not been set up
• The newly added Log Rotate feature will allow a better management of the EPP appliance storage space. In the event the logs sizes reaches critical levels of the total storage resources available, new logs will overwrite the oldest logs
• Access to login UI can now be restricted based on IP address, adding yet another layer of security and flexibility by allowing Admins to access the management console only from their preferred workstations
• Simplified Chinese has been added to the UI, extending the already supported languages
• Client Download page supports multiple Linux client releases and has been updated to include Ubuntu 14.04 LTS
• The possibility to customize the client package to skip the installation of the Outlook Add-on has been added. This can be useful as it provides increased flexibility

Security improvements

• The possibility to Enable or Disable remote access to the appliance from the User Interface
• Fixed various cross-site scripting (XSS) vulnerabilities on Mobile Device Management pages
• Cloud: Filter MDM responses from mobile devices & Filter requests sent to MDM Web Services

Device Control

• The option to Validate Offline Temporary Password codes given by end-users for connected device has been added. This feature provides additional security as Admins can identify previously connected devices and reconfirm their purpose
• The list of detected devices has been updated and now includes infrared (IrDA) and parallel port (LPT) devices for Windows clients

Content Aware Protection

• The Threshold feature has been added for a better policy management. With the threshold level set, redundant inspection of data is further eliminated
• Detection of Japan Personal Identifiable Information (social security numbers, passport numbers and telephone numbers) has been added
• New applications have been added to the CAP Policies

Mobile Device Management

• The new Geofencing feature provides the option to define a virtual perimeter on a geographic area using a location-based service. This provides a better management of MDM Policies that apply only in a specific area
• The Location History feature has been, providing a list of past locations of a mobile device. The overview provided can further extend the Audit capabilities of the product
• The newly added Enlarge Map feature offers a map view of the last 10 locations of the mobile device
• Support for pushing VCards Contact to Android devices has been added
• The option to push Exchange ActiveSync settings to iOS mobile devices has been added. It enables mobile users to access their e-mail, calendar, contacts, and tasks, and to continue to access this information while working offline

Windows Client Version: 4.2.9.5

Improvements:

• The user has the option to update policies (settings, rights and CAP) through the Notifier
• User login/logout events are reported to the EPP server
• Improvements in the file type detection module
• Reduced false positives for multiple Personal Identifiable Information (SSNs, phone numbers, etc)
• Improved efficiency in scanning of some Personal Identifiable Information (Germany SSN, UK SSN, Switzerland SSN, Korean driving license, e-mail, etc.)
• Improved detection of CAP threats in older format Office files
• Several file types added for CAP detection

Device Control

• Detect and control Infrared dongle devices, having device class "Infrared"
• Detect and control Parallel Port devices
• Control for removable storage devices that do not have a drive
• Pop-up notifications when Read-Only Devices are connected to the computer

Content Aware Protection

• The CAP Threshold feature has been added for a better policy management
• Detection of Japan Personal Identifiable Information (social security numbers, passport numbers and telephone numbers)
• The administrator has now the option to hide the pop-up notifications for CAP events
• Date detection (several formats are supported)
• US address detection
• Support for Mozilla Thunderbird 31
• File hash: for file tracing events and for CAP threat events the hash of the files is also reported

Bug fixes:

• Fixes for MTD card readers - drive letters appeared late in the system, making it impossible for the EPP service to unblock them without a letter available
• Fixed the detection of some Open Office files
• The event viewer gets EPP Client warnings on boot up, fixed
• EasyLock 2 Trusted device not starting automatically on Windows 8, fixed

Mac Client Version: 1.4.0.8 (for MAC OS X: 10.5+)

Improvements:

• Mac OS X 10.10 – Yosemite is supported
• The user has the option to update policies (settings, rights and CAP) through the Notifier
• Improvements in the file type detection module
• Reduced false positives for multiple Personal Identifiable Information (SSNs, phone numbers, etc.)
• Improved detection of some Personal Identifiable Information items (Germany SSN, UK SSN, Switzerland SSN, Korean driving license, e-mail, etc.)
• Improved detection of CAP threats in older format Office files
• Several file types added for CAP detection

Device Control

• Pop-up notifications when Read-Only Devices are connected to the computer

Content Aware Protection

• Controlled storage device types (Report only)
• EasyLock2 CAP support: file transfers on removable devices can be monitored for CAP content through EasyLock2
• The Threshold feature has been added for a better policy management
• Detection of Japan PII (social security numbers, passport numbers and telephone numbers)
• The administrator has now the option to hide the pop-up notifications for CAP events
• Date detection (several formats are supported)
• US address detection
• File hash: for file tracing events and for CAP threat events the hash of the files is also reported
• File shadowing of the files that have been detected or blocked by the CAP module
• Added support for Client uninstall command received from the Server

Bug fixes:

• Fixed an issue with the applications Sendspace and FileCloud Sync Client that were being blocked at startup by the EPP client
• For some file types the application Messages was not blocking the file transfers, fixed
• Fixed the detection of some Open Office files