| Security software denies rogue apps on XPe |
May 07, 2008
 Savant Protection has announced an endpoint security solution for Windows XP Embedded-based systems, including ATMs and POS (point of sales/service) systems. Savant's "Protection" package aims to stop unauthorized software from running, while having very little effect on system or network performance, according to the vendor.
(Click here for a larger view of Savant Protection)
Savant Protection uses an approach that is orthogonal to antivirus, anti-malware software, or desktop firewalls. That is, it can be used with or without them, according to Savant. Unlike these other security solutions, it requires no network access, since it does not need to download patches, lists, or virus signatures. It also does not tie up a system with scheduled system scans. Therefore, it is said to be particularly suited to relatively low-powered embedded systems that must operate autonomously.
Savant is described as a "shim" that places itself between a computer's queue of applications waiting to be run and its CPU. Any unknown or unauthorized software, including viruses and malware, will be proactively blocked, the company says.
The first time Savant is run, it quickly scans all applications that are installed on a system, "training" itself to each and assigning each a unique identifier and cryptographic key. From that point on, the product will not interfere with applications that were part of a default system image. However, attempts to run new software will simply not succeed, the vendor claims.
Savant's management console
(Click to enlarge)
Savant, which includes a password-protected management console (above), can be run in three different modes: "battleship," "normal," and "learn." In battleship mode, a system will silently refuse to run any unauthorized application. When WindowsForDevices.com tested this mode, we noticed that Internet Explorer refused to save downloaded applications to disk, for example.
Savant can prompt a user every time an executable is run
In normal mode, a system will run applications, but with a series of prompts, as shown above. Prompts occur whenever the system attempts to run an .EXE, .DLL, .MSI, or other executable, so they can be quite numerous. Therefore, a learn mode is also available. If switched on before a program is run, this mode will record a log of all executables that were used, as well as their locations on disk (below). The user can then choose whether to allow or disallow then in future, the company says.
Savant's management console can log all executables as they are run
(Click to enlarge)
Ken Steinberg, president/CTO of Savant Protection, said "Embedded devices are often deployed in high availability environments spanning diverse geographical areas with little or no local IT management support, yet we expect them to run flawlessly for years on end. Savant is designed to protect and harden these systems regardless of deployment strategy, management proximity or accessibility by cybercriminals."
Savant requires Windows XP Embedded or Windows XP, a 300MHz Pentium II or greater, 256MB of RAM, and approximately 40MB of hard disk space. A 30-day demo version of the software can be downloaded from the company's website, here. Annual licensing is approximately $50 per device, with consideration for volume and multiple year agreements.
Related stories:
(Click here for further information)
|
|
|
7 Advantages of D2D Backup
For decades, tape has been the backup medium of choice. But, now, disk-to-disk (D2D) backup is gaining in favor. Learn why you should make the move in this whitepaper.
4 Legal Reasons to Control Internet Access
The Internet is obviously a valuable resource for many organizations. However, many are exposed to legal liability concerns because they fail to control Internet access. Learn if you're safe in this white paper.
Rapidly Resolve J2EE Application Problems
Whether you are in the process of building J2EE applications or have J2EE applications already running in production, you must ensure that they deliver the expected ROI. Learn how in this white paper.
Load Testing 2.0 for Web 2.0
There are many unknowns in stress testing Web 2.0 applications. Find out how to test the performance of Web 2.0 in this white paper.
Build Better Games Online
For the game infrastructure providers, life is complex. Making money from games has become more complicated. Why? Find out in this white paper.
Building a Virtual Infrastructure from Servers to Storage
This white paper discusses the virtual storage solutions that reduce cost, increase storage utilization, and address the challenges of backing up and restoring Server environments.
Gaining Faster Wireless Connections with WiMAX
Welcome to what is quickly becoming the hyperconnected world where anything that would benefit from being connected to the network will be connected. Learn more in this white paper.
Is Your Desktop a Security Threat?
The new wave of sophisticated crimeware not only targets specific companies, but also targets desktops and laptops as backdoor entryways into those business’ operations and resources. Learn how to stay safe in this white paper.
Increasing SAN Reliability by 100 Percent
Storage area networks (SAN) are a strong part of storage plans. Learn how to increase your reliability and uptime by 100 percent in this case study.
|
|
|
|
|
Use of this site is governed by our Terms of
Service and Privacy Policy.
Except where otherwise specified, the contents of this site are copyright © 1999-2008
Ziff Davis Enterprise Holdings Inc. All Rights Reserved.
Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise is
prohibited. Windows is a trademark or registered trademark of Microsoft Corporation in the United States and/or other countries and is used by WindowsForDevices under license from owner. All other marks are the property of their respective owners. WindowsForDevices is an independent publication not affiliated with Microsoft Corporation.
news feed