This article provides the enhancements and new features in OfficeScan 10.6.
The Data Protection module provides Data Loss Prevention and expands the range of devices monitored by Device Control.
Data Loss Prevention
Data Loss Prevention safeguards organization's digital assets against accidental or deliberate leakage. Data Loss Prevention allows you to:
- Identify the digital assets to protect
- Create policies that limit or prevent the transmission of digital assets through common transmission channels, such as email and external devices
- Enforce compliance to established privacy standards
OfficeScan out-of-the-box has a Device Control feature that regulates access to USB storage devices, CD/DVD, floppy disks, and network drives. Device Control that is part of the Data Protection module expands the range of devices by regulating access to the following devices:
- Imaging devices
- Ports (COM and LPT)
- Infrared devices
- PCMCIA cards
- Print screen key
- IEEE 1394 interface
Plug-in Manager 2.0 installs with the OfficeScan server. This Plug-in Manager version delivers widgets. Widgets provide a quick visual reference for the OfficeScan features and plug-in solutions that you deem most vital to your business. Widgets are available in the OfficeScan server’s Summary dashboard,which replaces the Summary screen in previous OfficeScan versions.
The OfficeScan server and clients can now be installed on IPv6 computers. In addition, new versions of Control Manager and Smart Protection Server now support IPv6 to provide seamless integration with the OfficeScan server and clients.
The OfficeScan client now builds cache files, which contain information about safe files that have been scanned previously and files that Trend Micro deems trustworthy. Cache files provide a quick reference during on-demand scans, thus reducing the usage of system resources. On-demand scans (Manual Scan, Scheduled Scan, and Scan Now) are now more efficient, providing up to 40% improvement to speed performance.
When a computer starts, the OfficeScan client will postpone the loading of some client services if CPU usage is more than 20%. When CPU usage is below the limit, the client starts to load the services. Services include:
- OfficeScan NT Firewall
- OfficeScan Data Protection Service
- Trend Micro Unauthorized Change Prevention Service
Damage Cleanup Services can now run in advanced cleanup mode to stop activities by rogue security software, also known as FakeAV. The client also uses advanced cleanup rules to proactively detect and stop applications that exhibit FakeAV behavior.
You can choose the cleanup mode when you configure virus/malware scan actions for Manual Scan, Real-time Scan, Scheduled Scan, and Scan Now.
Clients can now scan HTTPS traffic for web threats. You can configure this feature when you create a web reputation policy.
The OfficeScan client can now be installed on Windows Server Core 2008. Users can use the command line interface to launch the client console and check the endpoint’s protection status.
This release includes the following enhancements:
- Smart scan clients now run Outlook Mail Scan in smart scan mode. In previous versions, smart scan clients run Outlook Mail Scan in conventional scan mode.
- Logs and notifications for spyware/grayware detections now show the user name logged on to the computer at the time of detection.
- In the spyware/grayware logs, if the second level scan result is ;"Passed", the first level scan result is now "Further action ;required" instead of "No action required". With this enhancement, you can now take additional measures such as cleaning spyware/grayware that you consider harmful.
- Client Self-protection is now a granular setting that you can configure in the client tree.
- You can now configure all clients to send heartbeat messages to the OfficeScan server. In the previous version, only clients in unreachable networks send heartbeat messages.
- When exporting client tree settings to a .dat file, all settings, except Update Agent settings, will now be exported. In previous versions, only scan settings and client privileges/other settings are exported.
- When using the Client Mover tool, you can now specify the client tree subdomain to which the client will be grouped after it moves to its new parent server.