Safend Data Protection Suite
Strengths: Installs easily, nice management interface, easy to use
Weaknesses: Reporting module extra, pricey when you add up all the components
Verdict: Nice solution for port management. Built-in best practice for various compliance reports
Two components of this suite come under review. Safend Protector protects confidential information from loss and theft by monitoring, detecting and restricting data transfers from the endpoint. Safend Auditor provides organisations with the visibility needed to assess and manage vulnerabilities.
The Safend Protector and Auditor were loaded on our test server after loading and configuring .Net 2.0 and SQL server. The dashboard was laid out like a file cabinet, with tabs across the top and multiple navigation panes below. We were able to find our endpoints by scanning the Operational Unit (OU). The tool identified devices and the active ports on those devices. This tool was valuable for knowing what was connected to the network at any point in time. We had to run this tool more than once, as we learned that the endpoints had had administrative access (which we already provided) but also required remote registry enabled, file/print sharing enabled and ports 139 and 445 allowed on the endpoint firewall.
We were really impressed with the management interface; it was one of the better ones we reviewed. It was nicely laid out, and easy to use and navigate. The server came with sample built-in policies and built-in best-practice reports for HIPAA, PCI DSS and SOX. Centralised alerting by event is configurable. We also liked the customisable end user messages that can be sent on specified policy violations.
With Safend Protector we applied customised security policies to all physical, wireless and storage interfaces. It also encrypts and enforces the encryption of all removable media devices. We liked the unique shadowing feature that allows for keeping secure copies of files to and/or from removable media. There was no firewall, anti-virus, anti-spyware or IPS support, but the documentation did state that most of the top providers were certified with Safend. We had very granular control.
This is a comprehensive port management and encryption solution. The documentation was very good. Basic support is provided with the licence purchase and upgraded support is available.