• Home
• White Papers
• Technical Papers
• Technical FAQ's

Overview of Technology

Exobox’s patented and patent-pending technology is based on enforcing appropriate system and application behaviors by isolating and controlling real-time access to the file system, memory, network and inter-process communication. It creates an isolated user environment that protects the host environment from all unauthorized modifications by treating all data from all sources as if it is malicious. This ensures that the security implemented is truly proactive as opposed to reactive.

Traditional computer security - anti-virus and anti-spy/ad-ware - tends to rely on a database of known malicious code, rendering it capable only of attempting to provide security against perpetually updated lists of previously identified threats or using algorithms to to detect anomalous behavior. This is a largely ineffective approach that will further deteriorate over time through hacker reverse engineering. Significantly, traditional security solutions operate at the application level, leaving them seriously vulnerable to a host of cyber threats. Exobox technology, however, is integrated at the operating system level, allowing it to provide complete protection for the user’s computer and network.

Our technology provides the industry’s only truly proactive security and data protection technology, with nominal CPU overhead and no required background scanning. It is also absolutely transparent to the user and compatible with all currently supported windows applications. Additionally, it can be ported it to all other operating systems (Mac, BlackBerry, LINUX/UNIX and cell phones). Our technology further translates into many stand-alone products in the areas of enterprise solutions, comprehensive IT management, environment mobility and total endpoint and server security. And it can be employed as stand-alone security or layered with a user’s existing security technology, by seamlessly integrating into enterprise networks to provide the ultimate protection without changing workflow or requiring a continuously updated data base of known threats.

Features and Benefits:

• Protects hosting computer environment by providing protection of the hosting computer’s OS and data files from malicious code/attack and user transgression/manipulation.
• Protects the user environment from external resources/services and provides protection of the user environment from malicious code/attack.
• Protects external resources from the user environment by providing protection of external resources/services from malicious code/attack and user transgression/manipulation.
• Provides access control of host/user objects and resources by providing granular control of user’s access rights to objects and resources, i.e. read, write, IPC, execute, and object namespace/domain constraints.
• Provides transparent namespace through granular control of the namespace revealed to the user environment.
• Provides a complete user data back-up solution by providing a safe, convenient, efficient disaster recovery, and extended audit and regulatory compliance.
• Affords a mobile user environment by allowing users to transfer their personal computer environments with them, including all corporate desktops and laptops as well as personal computers (not only the document root and roaming profile).
• Provides user environment access authentication/repudiation control.
• Provides object tracking and auditing by using a mechanism to track and control rights to specific files as they enter/exit the user environment, such as files flagged as intellectual property.
• Provides endpoint policy enforcement and auditing by leaving an audit trail of all interaction with the user environment.
• Provides integrated system implementation through native integration with common enterprise access control, user/group management and authentication solutions such as Windows® domain control and Directory Services.
• Provides a management and reporting interface by utilizing extensible management and reporting interface(s) and facilitating the development of third party control systems to manage implementation and functionality.
• Provides standardized reporting by facilitating reporting in standardized protocols/formats (OVAL, etc.).
• Provides a centralized management console by offering a comprehensive and extensible centralized management, administration and reporting interface (server).
• Provides client-side agent components by utilizing a client-side agent responsible for interfacing the centralized management console to facilitate management, administration and reporting/auditing.