Security Co. Deals for Whitelisting Firm

Tuesday, May 12, 2015 @ 02:05 PM gHale


By Gregory Hale
In a deal between security players, endpoint provider, Digital Guardian, today acquired whitelisting solution provider Savant Protection.

The manufacturing automation sector has been touting the virtues of whitelisting for years, but has met some resistance from end users. Experts have said whitelisting, while not a total singular solution, it can prevent quite a few software intrusions just by the mere fact it only allows in accepted software programs and everything else ends up shunned from entering the system.

RELATED STORIES
Belden Deals for Tripwire
BAE Deals for SilverSky
Schneider Deals for InStep Software
GE Deals for Wurldtech

That industry hesitancy didn’t stop Digital Guardian President and Chief Executive Ken Levine from making the deal.

“Solutions fall in and out of favor. Whitelisting has carried baggage for a while and there has been some slowness adopting it,” Levine said. “That is because it is harder to implement than perimeter security and sometimes people default to the easier solution. That is not what security is all about. It is a solution that is needed. Solutions people have defaulted to have been ineffective.”

With the addition of Savant, it adds another piece to the Digital Guardian security portfolio.

“We can now extend endpoint protection into whitelisting and POS,” Levine said. “Industrial control systems are potentially dangerous in many different ways and there is not quite a bit of variability so machines can end up shut down. We have to cover the devices across all spaces.”

Savant Protection brings to market an application whitelisting solution which can protect endpoints and servers from advanced persistent threats, Zero Day attacks and unknown malware covering industries from the manufacturing automation to retail.

Founded in 2006, Savant launched its application whitelisting solution, Savant Enforcer in 2007. Enforcer uses a whitelist on each individual endpoint which eliminates the single-point failure risk inherent with a central whitelist approach.

The deal enables Digital Guardian to:
• Extend its endpoint security platform to fixed-function devices including industrial control systems (ICS), SCADA systems, point-of-sale systems (POS), and automated teller machines (ATMs).
• Enhance its policy-driven app control capability with an endpoint and user-driven application whitelisting approach.
• Strengthen the current Digital Guardian PCI compliance solution by adding a “trusted change management layer” required to meet of the PCI-DSS v.3.1 controls.



Leave a Reply

You must be logged in to post a comment.