Published: 01 Sep 2007
REVIEWED BY GREG BALAZE
Price: Starts at $2,899 per 100 licenses
With the information security field seemingly saturated with every possible appliance and software, it would seem there's little room for an innovative approach. TrustWare's BufferZone belies that notion.
TrustWare's BufferZone works by quarantining suspect or restricted applications, creating a protected environment for each Web- or network-based application, such as Web browsers, IM, email and P2P applications, preventing viruses or malware from entering and affecting the rest of the workstation.
This should be fine for most organizations, though some may prefer products with more robust proprietary consoles.
You can choose from four policy settings under which files can be run: BufferZone, so files run only in the protected area (this prevents a file from affecting other areas of the workstation hard drive or memory space, or removable media such as a CD, flash drive or MP3 player); Forbidden, in which users have no access to the files; Confidential, which means any file or path matching the policy is invisible to applications run in BufferZone; or Trusted.
In testing, we found that using both file path and wild cards was best for policy enforcement (for example, *MY DOCUMENTS*.doc and *torrent.exe). Buffer-Zone includes a switch to allow digitally signed executables to run outside of the controls set for a certain media or file.
The lack of any reporting capabilities may give pause to some enterprises.
Testing methodology: BufferZone was run on two workstations, Windows XP SP2 and Windows 2000 SP4, that were in a standalone AD domain.