IMPEX USB protect was developed to handle movable media used in sensitive environments. It can be viewed both as a technical security control, as it allows for checking devices and files for malicious code. But more importantly it is also a strong policy enforcement tool, so import or export of information can be controlled based on rules that implement the information handling policies of the organization. Information handling policies can be broad like ”no executable files is allowed to be imported” to more specific like ”Only Excel CSV files containing number series with a size less than 100 kb are allowed to be exported, and the destination device must only be a USB with serial number 1234”
IMPEX can be use in different operational modes - to protect the target environment against malicious files when importing files, or to add rules and checks when exporting information out of the environment.
IMPEX can be used in a number of scenarios where critical systems, legacy systems or IT components not under your own control is part of the environment. Those environments contain equipment that often do lack antivirus for various reasons. IMPEX is an important defense line to prevent malicious code from ever reaching these systems.
Servers that is not covered by ordinary IT management procedures, such as SCADA servers, telephony servers, servers for physical access control, video servers for CCTV, medical devices, embedded devices, physical and virtual appliances and more are too often unprotected critical assets. For those servers and services, IMPEX can be used as an perimeter protection.
For price information, demonstrations, evaluations or additional product information, contact us for more details or requesting a demo!
A unique feature of the IMPEX is that it uses multiple antivirus products to scan files and devices. A large number of scanners can be used, as a layered defense. If one antivirus is not updated with signatures to fetch the latest threats a combination of multiple products will reduce the risk of not detecting known threats. An equally unique feature of IMPEX is that it can be configured to archive all files that it analyses for rescanning purposes. Continously and systematically checking previously imported files is something that unfortunately is needed today, since some threats will just be known after a period of time.
IMPEX also uses blacklisting technology to block files, file content and devices from beeing used. It also uses whitelisting technology. This can be used to only allow certain file types or even to only allow an individual device.
A key feature of IMPEX is its ability to create audit trails of the actions. The product allows for detailed reports on who imported or exported what file at what IMPEX station at what time and what security controls where performed on that time. An import or export action will generate audit tracks that gets saved into databases as well as beeing used for a receipt. An electronic or paper receipt can be a critical part of a process to verify that the checking has been performed and all work is performed is compliant with the process.
Detailed statistics as well as overview or detailed reports are available in the solution.
IMPEX was initially developed as a response to multiple Nordic customer requirements. This allow us to easily fulfill additional international requirements as they develop.
The server component for managing a fleet of impex stations is called ICC, or the Impex Control Center. See screenshots below for some basic information about the functionality. For more details, download the ICC manual.