Docsvault
 Home & Office   Features   FAQ   Members   Support   Contact 
   
 
  Securite Overview
 
     
ANTlabs Securite provides a protected environment for consumers to conduct online transactions with confidence.  
     
The active protection features are powerful yet unobtrusive, providing a high level of protection without disrupting the user experience.  
     
  See how its done ...
   
 

ANTlabs Securite solution leverages the existing network infrastructure to create a secure online transactional environment to protect both the endpoint and the network. The ANTlabs Securite solution comprises of the following 3 components:
 

Securite™ Security Suite - Zero configuration browser based component that is downloaded and installed on the consumer's PC which automatically authorizes expected computing requirements through network, application and storage lockdown policies, thereby creating a trusted computing environment on the endpoint.

 

SecuriteLive™ Service - Hosted service enabling protection against Phishing, Man-in-the-Middle attacks, DNS poisoning and TCP Hijack through implementation of both customers' manageable black-list and white-list directory of customers' website and network attributes.

SecuriteLive™ Console - GUI management console that manages and distributes security policies on per session, per transaction, per event or per site basis.

These 3 components work together to enable the following Internet Transaction Security features.

   
Secure DNS Resolution
 

A Secure Service containing a list of whitelisted website domains and blacklisted phishing domains is used for securely resolving domain names requested for by Securite clients.

Secure DNS resolution protects the user against DNS poisoning attacks and TCP packet hijacking by ensuring that all connections to a whitelisted domain is always resolved to the legitimate IP address and not redirected to a fake site instead.
   
Secure Site Verification
 

Securite uses a fingerprint system to verify that the SSL certificate received from a whitelisted service provider such as a bank is valid. This ensures that the certificate has not been compromised and the HTTPS session is being established with the legitimate service provider.
   
Phishing Protection
 

A service provider can immediately add newly discovered phishing sites to the blacklist in the Directory Service, instantly broadcasting the new policies and protecting the rest of its customers the moment the threat is detected.
   
Network Protection
 

During a Securite protected transaction, all outbound traffic from the user's computer is tunneled via open standards through to the service provider's router.

This ensures that all traffic automatically gets to the legitimate destination without any user intervention and prevents man-in-the-middle attacks especially in wireless networks such as the use of a rogue wireless access point.
   
Application Protection
 

Securite enforces a policy-based application lockdown during a Securite session which prevents any unauthorized applications from executing or reading and writing to disk on the user's computer.

Securite's application protection thus protects the user from crimeware, preventing spyware such as keyloggers from being able to capture keystrokes and blocks crimeware that read the browser's cache in order to steal data.
   
Browser Protection
 

During a Securite transaction, the user is warned of any unauthorized browser redirection out of the protected session, thus blocking cross-site scripting attacks.

In addition, Securite will only allow user submitted data to be POSTed to legitimate URLs specified in the service provider's policy rules.
   
Privacy Policy | Copyright © 2007 ANTlabs. All rights reserved.