This article can also be found in the Premium Editorial Download "Information Security magazine: Security Readers' Choice Awards 2008."
Download it now to read this article plus other related content.
Desktop business-level antimalware products
Sophos Endpoint Security and Control
Sophos Endpoint Security and Control garnered the gold, drawing raves from readers for its speedy and frequent signature updates. The product also earned high marks for its effectiveness in detecting, blocking and cleaning up malware, as well as its reporting and alerting capabilities.
Sophos Endpoint Security and Control provides integrated antivirus, antispyware and client firewall protection. Its single antivirus client incorporates intrusion prevention and control of unauthorized applications, VoIP, IM, peer-to-peer and gaming software. The software provides cross-platform security, protecting Windows, Mac, Linux, Unix, NetApp storage systems and Windows mobile devices.
A central management console warns of outbreak risks across the network via automatic email alerts. Sophos' host intrusion prevention system uses four layers of detection to block zero-day threats; the threat detection engine analyzes the behavior of code before it executes and prevents it from running if it is considered malicious.
Sophos is adding network access control (NAC) functionality to Endpoint Security and Control 8.0.
NOTABLE Sophos acquired NAC vendor Endforce last year.
CA Threat Manager
CA Threat Manager, an integrated antivirus and antispyware product, won the silver medal. Readers gave it high marks for the frequency and speed of its signature updates and its reporting and alerting capabilities. The product also scored well for its ability to detect and block unknown malware and zero-day exploits, plus its effectiveness in catching known malicious code.
CA Threat Manager detects and provides remediation for viruses, worms, spyware (technology acquired in 2004 from PestPatrol), keyloggers, Trojans and other malware. Features include extensive graphical reporting and support for Cisco NAC.
The product supports a variety of platforms, including Windows, Macintosh, Linux, Unix, NetWare, PDAs and Network Appliance NAS devices, and is managed via a Web-based console.
CA Threat Manager works with the CA Host-Based Intrusion Prevention System, which combines firewall and intrusion prevention capabilities.
NOTABLE CA added support for Microsoft's Network Access Protection (NAP) architecture with the release last year of Threat Manager Version r8.1. More recently, it also announced support for Windows Server 2008 and SQL Server 2008.
This was first published in April 2008