Approved applications are contained in a list of fingerprints that include checksums and locations of applications that are approved for use. The whitelisting mode allows you to tightly control which applications are allowed to run on the endpoint. System Lockdown enables blacklisting or whitelisting capabilities. Restricting applications with System Lockdown You can restrict unapproved applications using Application Control and System Lockdown. One of the most important security practices to implement on a PoS device is to restrict the use of unapproved applications that are allowed to run on the PoS device.
Note: If the PoS device is running a non-Windows operating system, Symantec Embedded Security: Critical System Protection product may be used as an alternative. Symantec Endpoint Protection 12.1 fully supports different Windows operating systems, including Windows Embedded, which is commonly used on PoS devices. Point-of-sale devices may have different operating systems. The firewall policy to restrict network to all but a specific set of applications.Application Control policy to constrain unwanted behaviors of allowed applications.System Lockdown policy to allow only approved applications.Antivirus, Memory Exploit Mitigation, SONAR, Download Insight, and Intrusion Prevention System (IPS).Symantec recommends that PoS devices use the following Symantec Endpoint Protection technologies:
This document describes the recommended configuration for running Symantec Endpoint Protection 12.1 on Windows point-of-sale (PoS) devices.
0 kommentar(er)
