Endpoint security is a client/server information security methodology for protecting a corporate network through focusing on network devices (endpoints) by monitoring their status, activities, software, authorization and authentication. Security software is installed both on any endpoint device as well as on network servers. Such software may include antivirus, antispyware, firewall and a host intrusion prevention system (HIPS).
For management and IT security personnel, endpoint security is an increasingly critical element for corporate networks as more employees and authorized outsiders (business partners, consultants, customers, clients and others) are granted network access through the Internet and/or a variety of mobile devices.Endpoint security is evolving with technological advances. Security elements now include intrusion protection and prevention as well as behavior blocking software to monitor endpoint device activities for unsanctioned applications or malicious intentions. Some complex endpoint security programs focus on user device authentication. As a user attempts to login, credentials are validated and the device is scanned for compliance with corporate policies, which may include a scan for unauthorized software (e.g. games and peer-to-peer applications), updated VPN (virtual private network), antivirus software, a firewall, mandatory corporate software and an approved operating system (OS). Devices not meeting such corporate policies may be granted limited access or quarantined. This is called network access control (NAC). When access is given, it is often according to the user’s profile. For example, an HR (human resources) employee may only be given general network access and access to the HR department files. NAC is used to unify many elements of endpoint security technology.
Read More »
Get Techopedia delivered to your inbox!