![sandisk secure access vulnerability sandisk secure access vulnerability](https://windows-cdn.softpedia.com/screenshots/thumbs/SanDisk-SecureAccess-thumb.png)
I could be wrong (and I sometimes am), but this entire conversation got me thinking about what is endpoint security and what is data loss prevention (or the alternative nomenclature: data leakage prevention)? Both terms remain en vogue since clients remain vulnerable because of their mobility and user naivety and data, by its very nature, is flowing everywhere with few checks.
![sandisk secure access vulnerability sandisk secure access vulnerability](https://kb.sandisk.com/euf/assets/images/faqs/2399/icon_over_white.gif)
But I'm not a big fan of vendor arguments that claim that can stop data leakage through inspection (an entirely different issues). That means it's very possible for a user to drag and drop an Excel spreadsheet of employee salary figures, Social Security numbers and addresses onto the drive. It's not inspecting data against policy violations. Now, the SanDisk drive is missing a couple of the elements of DLP, too.
Sandisk secure access vulnerability portable#
Rather, it forces users to use one type of portable media and transparently applies security protection to the data. While this solution is designed for the endpoint client, it doesn't do any of the above tasks. When I think of endpoint security, I think of network access control (NAC), configuration management, vulnerability management and security policy enforcement. Admittedly, there are many flavors of endpoint security. From my perspective, this solution seems more like a data loss prevention solution than endpoint security. We debated that in my office for a few minutes. SanDisk, which is better known for its flash memory solutions for everything from computers to digital cameras, will be rolling out its secure USB flash drive at next month's RSA Conference in San Francisco as an endpoint security solution. Oh, did I mention the drives are also high-capacity? And, through a partnership with RSA Security (a division of EMC), the drives have strong authentication and access controls. If the drives are stolen or lost, the data is both encrypted to prevent compromise and backed up for restoration. Through this solution, users are compelled to use only authorized secured USB flash drives. And, its centralized management will automatically backup data stored on the portable media.
![sandisk secure access vulnerability sandisk secure access vulnerability](https://www.partitionwizard.com/images/uploads/articles/2020/07/sandisk-secure-access/sandisk-secure-access-thumbnail.jpg)
Recognizing that some enterprises will logically lock down client USB ports, it's industry partners have devised a system that will allow the secure device access will blocking all unauthorized thumbdrives. The SanDisk drive is pretty neat in that it transparently encrypts all data on the drive with AES 128-bit encryption. Whoa! This is endpoint security? They rolled through the particulars of this solution, since it's no ordinary flash drive. Turns out they aren't.Īfter flipping through a bunch of cursory slides that every PR presentation contain, they showed me their endpoint security solution: an USB flash drive. I took the meeting because, frankly, I was intrigued by the idea that a company that makes portable storage media would be entering the security market. A couple of nice guys from SanDisk paid me a visit the other day at my New York office to unveil their version of endpoint security.