logo

sysctl ab

impex

impex usb protection

IMPEX USB protect was developed to handle movable media used in sensitive environments. It can be viewed both as a technical security control, as it allows for checking devices and files for malicious code. But more importantly it is also a strong policy enforcement tool, so import or export of information can be controlled based on rules that implement the information handling policies of the organization. Information handling policies can be broad like ”no executable files is allowed to be imported” to more specific like ”Only Excel CSV files containing number series with a size less than 100 kb are allowed to be exported, and the destination device must only be a USB with serial number 1234”

IMPEX can be use in different operational modes - to protect the target environment against malicious files when importing files, or to add rules and checks when exporting information out of the environment.


grid

IMPEX can be used in a number of scenarios where critical systems, legacy systems or IT components not under your own control is part of the environment. Those environments contain equipment that often do lack antivirus for various reasons. IMPEX is an important defense line to prevent malicious code from ever reaching these systems.



Servers that is not covered by ordinary IT management procedures, such as SCADA servers, telephony servers, servers for physical access control, video servers for CCTV, medical devices, embedded devices, physical and virtual appliances and more are too often unprotected critical assets. For those servers and services, IMPEX can be used as an perimeter protection.


control city

For price information, demonstrations, evaluations or additional product information, contact us for more details or requesting a demo!

impex station impex station mounted on the wall impex stations ready for launch

IMPEX Documents, manuals and guides

Download the IMPEX Station step-by-step usage guide (pdf)

Download the Impex Control Center (ICC) Manual (pdf)

Examples of installations, systems and use cases that need IMPEX protection include

  • Third party field personnel who need temporary access to install software updates on these computers, systems and appliances and thus bring files into the environment
  • Service personnel that need to extract datadumps, backups, copies of the current configuration out from the environment
  • Operational personnel that need to get operational data, data series, statistics, etc out from the environment
  • Export of data or information from a high security organization that require that all data transfers is checked to comply with data handling controls to avoid information leakage.

Multiple layers and mechanisms of protections for best results

A unique feature of the IMPEX is that it uses multiple antivirus products to scan files and devices. A large number of scanners can be used, as a layered defense. If one antivirus is not updated with signatures to fetch the latest threats a combination of multiple products will reduce the risk of not detecting known threats. An equally unique feature of IMPEX is that it can be configured to archive all files that it analyses for rescanning purposes. Continously and systematically checking previously imported files is something that unfortunately is needed today, since some threats will just be known after a period of time.


city usb

IMPEX also uses blacklisting technology to block files, file content and devices from beeing used. It also uses whitelisting technology. This can be used to only allow certain file types or even to only allow an individual device.


Audit trails, statistics and reports

A key feature of IMPEX is its ability to create audit trails of the actions. The product allows for detailed reports on who imported or exported what file at what IMPEX station at what time and what security controls where performed on that time. An import or export action will generate audit tracks that gets saved into databases as well as beeing used for a receipt. An electronic or paper receipt can be a critical part of a process to verify that the checking has been performed and all work is performed is compliant with the process.


Detailed statistics as well as overview or detailed reports are available in the solution.


IMPEX was initially developed as a response to multiple Nordic customer requirements. This allow us to easily fulfill additional international requirements as they develop.


Management server

The server component for managing a fleet of impex stations is called ICC, or the Impex Control Center. See screenshots below for some basic information about the functionality. For more details, download the ICC manual.

List of stations

station cards

Scan information uploaded from the stations

scans

Files in a scan

files

Configuration for stations

confs

Configure USB black and whitelists

blacklists

Configure Contact lists for optional autocompletion on clients

contacts