FAQs

CYSECA Endpoint Application Control is a complete solution for Application Whitelisting (AWL) implementation for endpoints. It allows selected files or applications that allows only applications that are whitelisted to be executed while others are being stopped.

The main benefit is in the prevention of execution of unauthorized and unknown application that includes malware / ransomware and various scripting, which includes but not limited to, VBScript and PowerShell. CYSECA Endpoint Application Control is effective for critical systems on workstations, shared terminals, servers, POS terminals, and industrial systems.

CYSECA Endpoint Application Control utilizes application whitelisting, while Antivirus operates based on blacklisting of malware. Blacklisting approach BLOCK malware based on known signature, while application whitelisting ALLOW application to run based on approved lists of applications.

CYSECA Endpoint Application Control implements an integrated function which includes hashes and signature verifications.

CYSECA Endpoint Application Control provides effective and lightweight application whitelisting engine at endpoints with secure system for monitoring and management.
This includes the ability to:

• Quarantine suspected files
• Block read/write on USB disk drive
• Enforce software license compliance
• Provide visibility to drill down on unwanted background processes on endpoints
• Prevent unauthorized changes

CYSECA Endpoint Application Control supports Microsoft client and server 32-bit and 64-bit platform:

• Windows 10
• Windows 8.1
• Windows 7
• Windows Server 2016 (64-bit)
• Windows Server R2 2012 (64-bit)
• Windows Server 2012 (64-bit)
• Windows Server 2008 R2
• Windows Server 2008 SP1 and above
• Windows Server 2003 R2 SP1 and above

CYSECA Endpoint Application Control is compatible and able to co-exist with all common antivirus solution.

The CYSECA Endpoint Application Control provides a unique lightweight engine that enables fast detection, verification and policy enforcement on endpoints running client or server platforms, without affecting existing user experience. For networks that has large number of endpoints infected with malware, the amount of noise generated by the malware will be greatly reduced, thus enabling better network optimization.

Not required. The agent enables verification of application execution based on locally stored encrypted database of whitelisted application. The connection to the CYSECA Application Server is required for setting of new or changes to application policy only

• New off-the-shelf applications can be added easily to pre-categorized catalogue of whitelisted application.
• In-house application can be added under customizable category. However a file reputation analysis will need to be conducted to ensure all components involved do not contain any malware.

CYSECA Endpoint Application Control scans and verify only executable application files which includes but not limited to, *.exe, *.dll and scripting files (*.ps1, *.vbs, and *.js). User content privacy on data files will be preserved.

An application can only be added to the whitelist by the CYSECA Application Server administrator.

CYSECA Endpoint Application Control provides a multi-level management console and real time dashboard for administrators to manage client administration, application whitelist policy based on user groups or location of branch offices, with extensive logging facility and reporting.