SOURCE: Symantec

February 13, 2006 08:00 ET

Symantec to Deliver Unique Network Access Control Appliance to Ensure Endpoint Devices Are Protected and Compliant

Managed and Unmanaged Devices Are Protected From Malware and Information Theft Before Gaining LAN, Branch, Telework and Mobile Access

CUPERTINO, CA -- (MARKET WIRE) -- February 13, 2006 -- Symantec Corp. (NASDAQ: SYMC) today announced Symantec Network Access Control Enforcer™ Appliance Series, available in late April; this pre-configured, easy-to-deploy solution helps to ensure corporate networks, branch offices, telecommuters, and mobile workers are protected and compliant with security policy when accessing enterprise networks and information assets from managed or unmanaged devices.

Part of Symantec's endpoint security product family, this hardened, rack-mountable appliance helps ensure that all connected devices are in compliance and will block or remediate non-compliant devices with automatic software and patch updates before granting any network access. The solution brings a compromised or infected system into compliance so that all company information and IT systems are insulated from information theft, violation, and disruption. The appliance supports the industry's largest array of network equipment, access methods, and protocols to enable centralized policy enforcement across even the most complex, heterogeneous network environments. The enforcer appliance also scales seamlessly to accommodate expanding enterprise network demands and can support upwards of tens of thousands of concurrent sessions for zero network impact.

"Our IT team is tasked with ensuring the integrity of information resources that support national security-related programs," said Todd Krahenbuhl, network engineer, Information Technology Services Division for Pacific Northwest National Laboratory. "Endpoint security protection is critical as it allows us to safely provide access to information assets for collaboration among various stakeholders. As part of our selection process, we looked for a multi-layered security approach that enforces policy compliance for the devices we manage, as well as devices from partners. The Symantec approach enables us to grant different levels of security depending on the characteristics of each machine, all controlled from a central management system."

The Symantec Network Access Enforcer Appliance integrates with Symantec Sygate Enterprise Protection 5.1 client software, which offers security protection against known and unknown attacks by combining innovative host intrusion prevention, desktop firewall, and peripheral device control. To enable compliance-on-contact for unmanaged devices, the Symantec On-Demand Protection 2.6 also integrates with the enforcer appliance delivering agentless technology to eliminate exposures from home computers, kiosks, and guest laptops. On-Demand Protection creates a Virtual Desktop environment offering a protected network session that includes a Malicious Code module to detect and kill malicious code such as keystroke loggers from capturing username and password information and screen scrapers from spying on user activity. At the end of the Virtual Desktop session, all Web browser information, such as auto-complete, stored passwords, and temporary files are erased. Moreover, IT security policies can define specific connection access control by URL and IP address to eliminate split tunneling for better control of application usage and to prevent the export of sensitive company information. The ability to validate and manage the security posture of unmanaged devices without endangering sensitive information assets is critical for business initiatives such as e-commerce and outsourcing.

"Security and compliance governance policies are only useful if they are enforced 100% of the time, and determining security compliance after granting any network access is too late," said Chirantan "CJ" Desai, director of product management for client and host security at Symantec. "Endpoint protection offers a perimeter of defense to ensure that all devices are current with security software before entering the corporate network. Our persistent enforcement approach enables IT to address the crucial task of protecting corporations from exposure of intellectual property, costly network downtime, and possible regulatory fines that can undermine a company's brand integrity."


Symantec Network Access Enforcer™ Appliance Series is scheduled to be available in late April. Symantec Sygate Enterprise Protection 5.1 and Symantec On-Demand Protection 2.6 are available in March through Symantec's worldwide network of value-added resellers, distributors, and systems integrators. Organizations seeking a reseller or distributor should contact Symantec at

About Symantec

Symantec is the world leader in providing solutions to help individuals and enterprises assure the security, availability, and integrity of their information. Headquartered in Cupertino, Calif., Symantec has operations in more than 40 countries. More information is available at

"NOTE TO EDITORS: If you would like additional information on Symantec Corporation and its products, please visit the Symantec News Room at All prices noted are in US dollars and are valid only in the United States.

Symantec, the Symantec logo, VERITAS, and the VERITAS logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the United States and certain other countries. Additional copany and product names may be trademarks or registered trademarks of the individual companies and are respectfully acknowledged.