[Download EASi brochure] Ecutel's EASi Agent and Policy Server adds borderless endpoint security to its Viatores Mobile IP VPN Suite. EASi (Endpoint Automated Security Initiative) allows Network Administrators to establish, manage, and enforce policies for endpoint security, access control and device management to ensure that mobile computing devices are protected and that network access policies are carried out prior to granting a user access to the corporate network. EASi helps establish security policies and then interrogates the mobile device to enforce compliance to those policies before allowing the device to connect to the enterprise infrastructure. EASi goes beyond simply testing devices for policy compliance by providing an ability to automatically take actions to remediate non-conforming devices, bringing them into policy adherance in real time. This enforces network security at the point of access and enables users to safely attach to thier resources and remain securely connected and productive. EASi offers an intuitive browser based Graphical User Interface (GUI) to create security policy conditions that the endpoint must meet prior to connecting to the corporate network. The EASi GUI also provides the capability to create automated action responses that can be taken to enforce policies, update devices and ensure potential security vulnerabilities are mitigated. The response actions provide an ability to manage programs, services, processes, software installations, patches, and more, so that the user's non-complying policy condition will be automatically remediated. The reduces downtime, calls to the help desk and support costs, while avoiding the need to place a non-conforming mobile worker's device in a quarantined or inactive state. Policy conditions can be established to ensure that if a device attempting to gain access to the home network does not meet the specified criteria, the user will be notified with a custom error message and will not be granted access until a remedial procedure to meet the policies is successful. If an action is defined in the policy to remediate a failed condition, EASi will automatically do so by updating device settings, loading new software, or updating patches or versions. The management console maintains a detailed log of all admissions control activities to track and model access violations and usage patterns.

Remediation
Remediation allows Network Administrators to define security parameters that will be enforced on the network end points. Using the recognized standards of WEBM and WMI, Viatores interrogates any device requesting access to the network and remediates any issues by updating software, patches, files or registry entries regarding Anti-Virus, Personal Firewall, Anti-Spyware, or other applications. Rather than denying access and forcing the device to be fixed by an IT shop, the device is automatically repaired, saving time for both mobile worker and their IT department. This process is borderless, meaning that both local and remote devices can adhere to the specified security policy. EASI Remediation does not require integration with third party APIs or drivers; network administrators can custom-build their security policies around other application signatures. With Remediation, Viatores allows enterprise devices to be protected at all times, both at rest and when transmitting data.

Network Admission Control
Network Administrators have the ability to create a series of conditions that define an Admissions Control Rule. These conditions can be based on any of the following:

• Whether a software package is installed

• Whether a software package version number meets certain criteria

• Whether a process is currently running

• Whether a registry key vale meet certain criteria

If the device attempting to gain access to the home network does not meet the specified criteria, the user will be notified with a customer error message and will not be granted access. The management console maintains a detailed log of all admissions control activities.

Software Update
Network Administrators have the ability to create a collection of conditions and actions that define a Software Update task. The possible conditions are based on the following:

• Whether a software package is installed

• Whether a software package version number meets certain criteria

• Whether a registry key vale meet certain criteria

If the client device meets the specified criteria, a combination of the following conditions will be the result:

• Display test message to user

• Upload from a mapped network resource to any client directory

• Stop a server or process

• Start a service or process

• Run any DOS command for MSI or EXE install or upgrade

• Ask user permission to reboot device

The management console maintains a detailed log of all admissions control activities.

Device Management Control Panel
Network Administrators have the ability to manage all connected devices. By selecting a connected device from the Management Console, an administrator can gather information and immediately act on it remotely. This can be done in a detailed, manual manner or by way of pre-defined shortcuts. The features that can be controlled include installed packages, file system encryption, file management, system info, user accounts, environment variables, battery life, and network adapters. This feature of Viatores decreases the time to respond to user issues and increases user uptime.

© 2006 Ecutel Systems Inc. All rights reserved. Ecutel, Viatores, IC2 and their respective logos are trademarks or registered trademarks of Ecutel Systems Inc. Other product and brand names may be trademarks or registered trademarks of their respective owners. Patents Pending.