Topic
Endpoint security
About: Endpoint security is a research topic. Over the lifetime, 111 publications have been published within this topic receiving 780 citations.
Papers published on a yearly basis
Papers
Patent•
23 Feb 2012TL;DR: In this paper, an integrated, multi-service network client for cellular mobile devices is described, which can be deployed as a single software package on cellular mobile network devices to provide integrated services including secure enterprise virtual private network (VPN) connectivity, acceleration, security management including monitored and enforced endpoint compliance, and collaboration services.
Abstract: An integrated, multi-service network client for cellular mobile devices is described. The multi-service network client can be deployed as a single software package on cellular mobile network devices to provide integrated services including secure enterprise virtual private network (VPN) connectivity, acceleration, security management including monitored and enforced endpoint compliance, and collaboration services. Once installed on the cellular mobile device, the multi-service client integrates with an operating system of the device to provide a single entry point for user authentication for secure enterprise connectivity, endpoint security services including endpoint compliance with respect to anti-virus and spyware software, and comprehensive integrity checks. That is, the multi-service client provides a common user interface to the integrated services, and provides a VPN handler that interfaces with the operating system to provide an entry point for network traffic to which the integrated services can be seamlessly applied.
124 citations
Proceedings Article•
1 Jan 2006
TL;DR: Vulnerability can be minimized through modification of desktop security programs and increased vigilance on the part of the system administrator or CSO, and targeting high-risk users on an individual basis.
Abstract: Despite numerous advances in IT security, many computer users are still vulnerable to security-related risks because they do not comply with organizational policies and procedures. In a network setting, individual risk can extend to all networked users. Endpoint security refers to the set of organizational policies, procedures, and practices directed at securing the endpoint of the network connections – the individual end user. As such, the challenges facing IT managers in providing effective endpoint security are unique in that they often rely heavily on end user participation. But vulnerability can be minimized through modification of desktop security programs and increased vigilance on the part of the system administrator or CSO. The cost-prohibitive nature of these measures generally dictates targeting high-risk users on an individual basis. It is therefore important to differentiate between individuals who are most likely to pose a security risk and those who will likely follow most organizational policies and procedures.
74 citations
Patent•
11 Apr 2014TL;DR: In this paper, a technique for operating one or more virtual machines each in accordance with a respective security container is described, wherein the respective security containers are associated with a corresponding rule that specifies transfer of the virtual machine from the respective container to a quarantine container based on one ormore criteria.
Abstract: A technique includes operating one or more virtual machines each in accordance with a respective security container, wherein the respective security container is associated with a respective rule that specifies transfer of the virtual machine from the respective security container to a quarantine container based on one or more criteria. One or more security services are operated on the one or more virtual machines to identify one or more security threats associated with one or more of the virtual machines. One or more tags generated by the endpoint security services are obtained, where each tag is for a virtual machine that is associated with one of the identified security threats. And one of the virtual machines is identified as requiring transfer to the quarantine container based on, at least, one or more of the obtained tags and the one or more criteria.
49 citations
Patent•
20 Oct 2006
TL;DR: In this paper, a system, method and computer program product for administering trust dependent functional control over a portable endpoint security device (PEPS) is described, where a reconnoitering application in conjunction with a trust enforcement policy determines a relative trusted state of the host processing unit and administers trust dependent functionality over the PEPS in dependence on one or more trust dependent characteristics reconnoitered from the host unit.
Abstract: A system, method and computer program product for administering trust dependent functional control over a portable endpoint security device (PEPS). A reconnoitering application in conjunction with a trust enforcement policy determines a relative trusted state of the host processing unit and administers trust dependent functional control over the PEPS in dependence on one or more trust dependent characteristics reconnoitered from the host processing unit. The trust dependent characteristics reconnoitered from the host processing unit may be location dependent, context dependent, hardware configuration dependent and logical state dependent.
44 citations
Patent•
1 Feb 2011TL;DR: In this paper, a local access module caches endpoint security information maintained by a remote server, and when a user attempts to access a network resource through an endpoint device, the endpoint device sends authentication information and health information to the local access node.
Abstract: In general, the principles of this invention are directed to techniques of locally caching endpoint security information. In particular, a local access module caches endpoint security information maintained by a remote server. When a user attempts to access a network resource through an endpoint device, the endpoint device sends authentication information and health information to the local access module. When the local access module receives the authentication information and the health information, the local access module controls access to the network resource based on the cached endpoint security information, the authentication information, and a security state of the endpoint device described by the health information.
36 citations
Related Topics (5)
Performance Metrics
| Year | Papers |
|---|---|
| 2021 | 8 |
| 2020 | 10 |
| 2019 | 9 |
| 2018 | 8 |
| 2017 | 16 |
| 2016 | 3 |