McAfee Integrity Control
Protect point-of-service systems from unauthorized applications and change
| McAfee Products | ||
|---|---|---|
| McAfee Integrity Control for Fixed Function Devices - Perpetual License | ||
| McAfee Integrity Control for Fixed Function Devices, 1-25 Nodes, 1-Year *Perpetual License with 1-Year Gold Software Support *Price per node. Quantity must be 1 or greater |
#ICDCKE-AA-AA List Price: $336.00 Our Price: $285.60 |
|
| McAfee Integrity Control for Fixed Function Devices, 26-50 Nodes, 1-Year *Perpetual License with 1-Year Gold Software Support *Price per node. Quantity must be 26 or greater |
#ICDCKE-AA-BA List Price: $285.60 Our Price: $242.76 |
|
| McAfee Integrity Control for Fixed Function Devices, 51-100 Nodes, 1-Year *Perpetual License with 1-Year Gold Software Support *Price per node. Quantity must be 51 or greater |
#ICDCKE-AA-CA List Price: $245.62 Our Price: $208.78 |
|
More pricing below, click here
McAfee Integrity Control Overview:
McAfee Integrity Control combines industry-leading application control and change control technology, ensuring that only trusted applications run on fixed-function devices, such as point-of-service (POS) systems, ATMs, and kiosks. Integrity Control provides continuous change detection capabilities while preventing unauthorized change attempts. Using a trusted source model, Integrity Control allows software updates from authorized sources, even when systems are locked down.
| Key Advantages: |
|---|
Comprehensive change visibility
and control
Dynamic whitelisting lowers cost of ownership
Enforce change policy
Operationally transparent
|
Description:
McAfee Integrity Control provides an effective way to block unauthorized applications and change on fixed-function point-of-service infrastructures, including ATMs, point-of-sale (POS) systems, and kiosks. It combines industry-leading whitelisting and change control technology to ensure that only trusted applications run on fixed-function systems. Unlike simple application control, Integrity Control uses a dynamic trust model that eliminates the need for tedious manual updates to approved lists, so even when systems are locked down, software updates from authorized sources are still allowed.
As retail and financial services organizations face a barrage of unknown software from the web, this centrally managed solution adds timely control to your systems security strategy and meets operational needs. Managed through the McAfee ePolicy Orchestrator (ePO) platform, Integrity Control provides customers with continuous change detection capabilities, while proactively preventing unauthorized change attempts on ATMs and POS systems.
McAfee Integrity Control delivers:
- Viable security that uniquely extends a layer of protection to fixed-function devices
- A flexible, affordable, and secure solution that dynamically manages whitelists and supports multiple configurations for different business needs and devices
- Scalable and centralized management that leverages your investment in the McAfee ePO platform Streamlined remote deployment via the McAfee ePO platform, so you can easily manage and report on large enterprise rollouts, all from a central location
Comprehensive change policy enforcement — Get continuous change detection capabilities, while proactively preventing unauthorized, out-of-policy change attempts. Integrity Control links protection directly to policy and verifies changes against the source, time window, or approved change ticket. Changes outside of policy are blocked, greatly reducing change-related outages and compliance violations.
Viable security for fixed-function devices — Integrity Control uniquely extends a layer of protection to devices with a fixed CPU or memory, including POS terminals, ATMs, and medical imaging systems that perform critical functions and often store sensitive data. A low-overhead footprint does not impact system performance, and it is equally effective in standalone mode, without network access.
Centralized deployment and management — Get seamless integration with McAfee ePolicy Orchestrator (McAfee ePO) software to ease deployment, management, and reporting. The single McAfee ePO console lowers the cost of ownership by consolidating security and compliance management, eliminating the need to manage data in two separate systems. Streamlined remote deployment via the McAfee ePO platform easily manages and reports on large enterprise rollouts, all from a central location.
An efficient, transparent solution — Integrity Control runs transparently on fixed-function systems, enables the entire point-of-service infrastructure to be monitored without impact, and can be set up quickly. This flexible, affordable, and secure solution dynamically manages whitelists and supports multiple configurations for different business needs and devices.
Benefits and Features:
Benefits:
|
Features:
|
Solutions:
McAfee® Integrity Control™ software combines industry-leading whitelisting and change control technology to ensure that only trusted applications run on fixedfunction devices, such as point-of-service (POS) systems, automated teller machines (ATMs) and kiosks. McAfee Integrity Control software provides customers with continuous change detection capabilities while also offering the capability to proactively prevent unauthorized change attempts. McAfee Integrity Control software uses a trusted source model, so that even when systems are locked down, software updates from authorized sources are still allowed.
Block unauthorized applications and change attempts
McAfee Integrity Control software enables the IT organization to ensure that only approved software
runs on the point-of-service infrastructure without imposing additional operational overhead. McAfee
Integrity Control software easily blocks unauthorized, vulnerable, or malicious applications that can
compromise the integrity of critical systems. The solution’s dynamic whitelisting trust model keeps
systems tightly secured yet allows for authorized updates or changes to be made from administratordefined
trusted sources. This eliminates the manual and costly support associated with other whitelisting
technologies, as no databases, rules, or updates are needed.
The McAfee Integrity Control software also leverages change control technology that can block unwanted, out-of-policy changes before they occur. This level of protection is linked directly to policy, and changes can be verified against the change source, time window, or approved change ticket. Changes that are attempted outside of policy on enabled systems are blocked, and the change attempt is logged and sent as an alert to administrators. This greatly reduces change-related outages and compliance violations.
Monitor file integrity and changes
Through file integrity monitoring (FIM), McAfee Integrity Control software monitors files and directories
for changes to content, permissions, or both. McAfee Integrity Control software provides continuous
FIM, which is essential for testing and verifying the security of an environment or meeting critical
compliance requirements such as those outlined in the Payment Card Industry Data Security Standard
(PCI DSS). McAfee Integrity Control software provides comprehensive information about every change,
including the user and program used to make the change.
Centralized deployment and management through ePO
Seamless integration with McAfee® ePolicy Orchestrator® (McAfee ePO™) software eases McAfee
Integrity Control agent deployment, management, and reporting. The single McAfee ePO console lowers
the cost of ownership by consolidating fixed-function device security and compliance management. This
saves IT organizations hardware, training, and operational costs, and provides unified control over the
policies and protections on each enabled ATM, kiosk or POS system. Integration with the McAfee ePO
platform eliminates the need to manage data in two separate systems.
Figure 1. McAfee Integrity Control
extends a layer of protection to fixedfunction
devices such as kiosks, POS
terminals, and legacy platforms to
reduce customer risk exponentially.
Deployment considerations
Increased control over fixed-function systems—In regulated industries such as retail, financial services,
and healthcare, devices such as POS terminals, ATMs, and medical imaging systems perform critical
functions and often store sensitive data. McAfee Integrity Control software is ideal for extending a
layer of protection to systems that perform a fixed-function in terms of CPU or memory resources. The
solution offers a low-overhead footprint that does not impact system performance and requires very low
initial and ongoing operational overhead. It is equally effective in standalone mode without network
access.
Meeting and sustaining PCI DSS compliance—Many point-of-service systems such as ATMs, POS terminals, and kiosks are in scope for meeting PCI DSS compliance. McAfee Integrity Control software provides continuous information about change events across the point-of-service infrastructure, which includes where the change was made (which server/servers), when it was made (time), which user made the change, how the change was made, what (content inside the file) changed, and whether the change was approved. This deep level of visibility into the point-of-service environment is delivered through the McAfee ePO platform and enables IT organizations to continuously verify the security of POS systems while validating PCI DSS compliance to auditors.
Improve service availability—Downtime on fixed-function devices is often caused by unauthorized or untested change, and most of the time taken to restore availability to these devices is spent discovering what changed. This is due to a gap between actual change activity and the documented change process. This change control gap results in manual activity by IT departments to control and minimize the high costs of change and change-related outages. McAfee Integrity Control software enables IT organizations to achieve higher service availability for fixed-functions devices by bridging this change control gap. McAfee Integrity Control software tracks changes continuously through the McAfee ePO platform and allows for the selective enforcement of change policies to prevent unknown changes from occurring before they cause a problem. McAfee Integrity Control software helps customers reduce the number of unavailability incidents (as measured by mean time between failures), as well as recovery time per incident (as measured by mean time to repair).
Figure 2: How dynamic whitelisting works.
System Requirements:
These are minimum system requirements. Actual requirements will vary depending on the nature of your environment. Some features may vary depending on the platform.
Operating Systems (OS)
- Windows NT*
- Windows 2000
- Windows 2003
- Windows 2003 (64-bit)
- Windows 2008
- Windows 2008 (64-bit)
- Windows 7
- Windows XP
- Windows XP (64-bit)
- Windows Vista
- Windows Vista (64-bit)
- Windows XPE
- Windows CE 6.0*
- Red Hat Enterprise Linux 3/4/5
- CentOS 4/5
- SUSE Enterprise Linux 9/10
- Oracle Enterprise Linux 5
- Solaris 8/9/10
*These platforms are not supported by McAfee ePolicy Orchestrator (ePO) or work in standalone mode.
Documentation:
Download the McAfee Integrity Control Datasheet (PDF).
| McAfee Products | ||
|---|---|---|
| McAfee Integrity Control for Fixed Function Devices - Perpetual License | ||
| McAfee Integrity Control for Fixed Function Devices, 1-25 Nodes, 1-Year *Perpetual License with 1-Year Gold Software Support *Price per node. Quantity must be 1 or greater |
#ICDCKE-AA-AA List Price: $336.00 Our Price: $285.60 |
|
| McAfee Integrity Control for Fixed Function Devices, 26-50 Nodes, 1-Year *Perpetual License with 1-Year Gold Software Support *Price per node. Quantity must be 26 or greater |
#ICDCKE-AA-BA List Price: $285.60 Our Price: $242.76 |
|
| McAfee Integrity Control for Fixed Function Devices, 51-100 Nodes, 1-Year *Perpetual License with 1-Year Gold Software Support *Price per node. Quantity must be 51 or greater |
#ICDCKE-AA-CA List Price: $245.62 Our Price: $208.78 |
|
| McAfee Integrity Control for Fixed Function Devices, 101-250 Nodes, 1-Year *Perpetual License with 1-Year Gold Software Support *Price per node. Quantity must be 101 or greater |
#ICDCKE-AA-DA List Price: $213.69 Our Price: $181.64 |
|
| McAfee Integrity Control for Fixed Function Devices, 251-500 Nodes, 1-Year *Perpetual License with 1-Year Gold Software Support *Price per node. Quantity must be 251 or greater |
#ICDCKE-AA-EA List Price: $188.04 Our Price: $159.83 |
|
| McAfee Integrity Control for Fixed Function Devices, 501-1000 Nodes, 1-Year *Perpetual License with 1-Year Gold Software Support *Price per node. Quantity must be 501 or greater |
#ICDCKE-AA-FA List Price: $169.24 Our Price: $143.85 |
|
| For more than 1,000 nodes, please use our Quote Request Form! | ||
| McAfee Integrity Control for Fixed Function Devices | ||
| McAfee Integrity Control for Fixed Function Devices, 1-25 Nodes, 1-Year *1-Year Gold Software Support *Price per node. Quantity must be 1 or greater |
#ICDYCM-AA-AA List Price: $67.20 Our Price: $57.12 |
|
| McAfee Integrity Control for Fixed Function Devices, 26-50 Nodes, 1-Year *1-Year Gold Software Support *Price per node. Quantity must be 26 or greater |
#ICDYCM-AA-BA List Price: $57.12 Our Price: $48.55 |
|
| McAfee Integrity Control for Fixed Function Devices, 51-100 Nodes, 1-Year *1-Year Gold Software Support *Price per node. Quantity must be 51 or greater |
#ICDYCM-AA-CA List Price: $49.12 Our Price: $41.75 |
|
| McAfee Integrity Control for Fixed Function Devices, 101-250 Nodes, 1-Year *1-Year Gold Software Support *Price per node. Quantity must be 101 or greater |
#ICDYCM-AA-DA List Price: $42.74 Our Price: $36.33 |
|
| McAfee Integrity Control for Fixed Function Devices, 251-500 Nodes, 1-Year *1-Year Gold Software Support *Price per node. Quantity must be 251 or greater |
#ICDYCM-AA-EA List Price: $37.61 Our Price: $31.97 |
|
| McAfee Integrity Control for Fixed Function Devices, 501-1000 Nodes, 1-Year *1-Year Gold Software Support *Price per node. Quantity must be 501 or greater |
#ICDYCM-AA-FA List Price: $33.85 Our Price: $28.77 |
|
| For more than 1,000 nodes, please use our Quote Request Form! | ||