|
 Apani® EpiForce® proactively eliminates vulnerabilities within the corporate network by isolating computers and thebusiness-critical data, personal information and intellectual property stored into security zones. EpiForce delivers cross-platform server isolation through a software-based architecture that enables logical security zoning and policy-based encryption of data in motion.
The Four Components
EpiForce consists of four key components that work together to enable logical security zoning and policy-based encryption of data in motion:
- EpiForce client software is installed on each server and/or endpoint as a shim into the TCP/IP stack, monitor all incoming and outgoing data frames (packets) and applying policy to each packet (block, allow, encrypt or CLEAR).
- EpiForce Admin Console offers an intuitive centralized management interface for creating and deploying policy to all EpiForce client software, regardless of the physical location or geography of the server or endpoint.
- EpiForce Database Server provides the bridge between the database that stores all policies, the Admin Console and the Admin Server, ensuring policy rules are maintained, protected and deployed correctly.
- EpiForce Admin Server distributes policies, and handles messaging and queuing between the deployed instances of Apani client software.
Securing Legacy Platforms
EpiForce Guardian appliances enable legacy platforms and platforms unable to host EpiForce client software to realize the same benefits of logical security zones and policy-based encryption of data in motion. Guardian appliances protect multiple hosts or hosts with multiple IP and MAC addresses and provide an extra degree of flexibility to security administrators.
Convenient Centralized Management
Logical security zones are created by applying a unified set of policies to a “like-minded” group of servers, clients or both in order to isolate, protect traffic, and to provide access to privileged resources. Policy-based encryption of data in motion can be employed selectively (e.g. at the port-level) to provide confidentiality while maximizing application performance and reducing bandwidth requirements. EpiForce Admin Server automatically informs all the EpiForce client software on the applicable computers of the implemented or updated security policies.
Both logical security zones and policy-based encryption are “persistent” and do not cease when computers are physically relocated, providing organizations the flexibility to locate computers where business requirements dictate, without concern for continuity of security policy.
EpiForce Admin Console presents a single interface through which authorized security administrators can create and deploy security policies for all servers and clients protected by EpiForce. Hierarchal delegation, workflow, detailed reporting and audit trails ensure EpiForce is easily applied to existing security procedures. |
|
