Specifications
24
3 PROTECTING WINDOWS COMPUTERS REVIEWER’S GUIDE
Intrusion prevention
Sophos Endpoint Security and Control for Windows includes complete intrusion
prevention (HIPS), ensuring proactive protection without you having to carry
out the complex installation and configuration of a separate product. A number
of pre-emptive detection technologies combine to ensure your network is secure
against today’s blended and targeted zero-day threats:
• Genotype
®
technology provides zero-day protection, recognizing families
and variants of known viruses, enabling them to be pre-emptively blocked
even before specific detection becomes available
• Behavioral Genotype
®
Protection automatically guards against new and
targeted threats by analyzing behavior before code executes
• Built-in HIPS technologies including pre-execution suspicious file detection,
runtime suspicious behavior analysis and buffer overflow protection, all
combine to detect malware, suspicious files and behavior.
Faster scanning with Decision Caching
Decision Caching™ – the high-performance on-access scanning technology in
Sophos Endpoint Security and Control for Windows – optimizes performance
by ensuring that only new or changed files are scanned for threats. In addition,
intelligent file recognition technology means that only those files which are
capable of containing malware are scanned. Remote users can perform
on-demand scans of individual files or the whole computer before reconnecting
to the main network, providing an extra layer of security.
Quarantine Manager
Quarantine Manager allows the moving or deletion of infected files and lets you
selectively block PUAs and controlled applications.
Figure 19: Quarantine manager