|
Features
The complete feature
list
Email and
newsgroup scanning
NVC scans all in- and outgoing emails as
well as postings to and from newsgroups to
ensure that they do not contain malware of
any kind. In addition, attachments can be
blocked based on file extension or specific
file name to further increase security. The
email scanning feature works with most email
programs currently available.
NIP hooks all applications using winsock,
and scans all traffic on ports for POP3,
SMTP and NNTP. Norman Internet Protection
(NIP) minimizes the threat from both new and
existing email worms with both the best in
virus scanning and plain attachment
blocking. We recommended that Norman’s
SandBox is enabled to increase protection
against known and unknown malware.
On-access
scanning
This involves constant monitoring of the
file system on the workstations. For
antivirus software, it is imperative to
detect and block malware before it is
activated. Whenever a file is accessed in a
read/write operation, or a program is
executed, the on-access scanner is notified
and scans the file automatically. If malware
is found the following options are
available:
-
clean
-
remove
-
warn only
-
ignore
Norman Sandbox
Norman’s SandBox
technology detects new and unknown computer
viruses, including trojans and worms. Today,
an email worm can infect tens of thousands
of workstations in a matter of seconds. The
antivirus vendors are expected to find the
cure, update the virus definition files, and
distribute these to its customers
immediately. The need for speed is
paramount. Norman’s SandBox is a virtual
world where everything is simulated. An
emulator provides an environment where
possible virus infected executables “run"
just as they would do on a real system. When
execution stops, the SandBox is analyzed for
changes. The SandBox is particularly tuned
to find new email-, network- and
peer-to-peer worms.
Connection
security
Norman Internet Control closely monitors
every application that attempts a connection
to the Internet/network. Each application is
automatically assigned its own "guard" for
monitoring. Applications that do not use the
Internet/network are free from any kind of
monitoring. No longer will you connect to
the Internet/network and have to worry that
some applications in your system will send
out information without your knowledge.
Trojans that seek to control your system
from an incoming connection will be
detected, as will scripts that attempt to
send emails using your name.
You can control who can view and access your
shared folders and even prevent others from
detecting your computer’s presence on the
network.
Parental
Control for web browsing
This feature allows parents/adults to set up
user accounts with different access rights
to web sites. Using the parental control
feature parents can ensure that children are
not visiting sites containing inappropriate
content.
Scenario:
Mary is 4 years old and can only surf the
sites www.disney.com, www.norman.com etc.
John on the other hand is allowed to surf
all sites except those containing any
pornographic material.
The banned sites are blocked by:
Time Control
and Account Manager
Parents are able to define one or more
accounts with user passwords.
Each account can be given a total time (may
differ for each account) per day/week/month
and/or special hours during the day.
Scenario:
John may only access the Internet between
16:00 and 21:00 and a total of five hours a
week.
Mary can also use the Internet for five
hours a week, but must do so between 13:00
and 18:00.
Active
content control
Active-Xs, Java-/VB-Scripts and Java Applets
are supposed to enrich the Internet
experience for users. However, malicious
versions of these can cause serious security
breaches.
Norman Internet Control gives you total
control over what sites can activate such
behavior on your PC, and which sites should
be stopped.
Checksumming
of all executables
With the checksumming of all executables
(applications) that are stored in the rules
database, Norman Internet Control detects a
possible trojan masquerading as a well-known
Internet application.
Scenario:
Somebody has installed a backdoor trojan
with the file name of IEXPLORER.EXE on your
PC. This happens to be the same file name as
Microsoft’s Internet Explorer. In this case,
Norman Internet Control would already have
rules for the original Internet Explorer
application allowing it to access Internet
sites using the http, https and ftp
protocols. The user will be warned about a
possible security breach giving the user the
possibility to block this trojan from
communicating with the remote
hacker/software.
Cookie
manager
Web sites seek to collect behavioral
patterns while you surf the Internet.
Snippets of information are being sent out
between your browser and the web sites you
visit. These so called "cookies" are useful
for the sites to differentiate between
surfers, but could also be collected and
used to provide information about your
surfing habits. With Norman Internet
Control, you can control which sites you
will allow to collect this information and
block the rest.
Surfing information such as "referrer" (the
web page you came from) can also be blocked.
Trust site
The trust site feature increases user
friendliness as it lets the user approve
(trust) all active content on a site with
one rule, thereby reducing the number of
"warnings" that the user needs to take
action on from the same site.
MAC address
authentication
This feature is useful for scenarios where
two or more computers are connected to a DSL
router that also assigns an individual
public IP to each connected PC. By letting
Norman Internet Control know which MAC
address should be trusted, connected PCs
with public IPs within the same hub may
communicate with each other freely.
Port scan
detection and logging
These events occur when a number of
packets arrive at your system to different
services (ports) but from the same host
(source). When this pattern occurs within an
interval of time, Norman Internet Control
will log this event as a port scan. The
purpose of port scans is to discover what
services your system is providing and could
be used as a preliminary investigation prior
to hacking attempts on your system.
JavaScript
pop-up blocker
With Norman Internet Control you can block
or accept pop-ups that are launched using
JavaScript techniques. Although this feature
stops most pop-ups that are automatically
launched, it might miss pop-ups that are
launched using other techniques. You should
also be aware that if some web sites use
this method to launch a legitimate window,
it will be stopped.
Trusted IPs
With this feature you can add single IP
addresses or a range of addresses that you
trust and with which you want to share
services.
Automatic updates
Norman Internet Update (NIU) is an
integrated part of NVC and can be configured
to regularly check for new and updated files
on Norman’s product servers. NIU provides
complete updating and upgrading of the
application software and virus definition
files to ensure that the latest version of
the software is always installed.
NIU employs incremental updates of virus
definition files to keep the size of the
updates as small as possible, thereby
reducing download time.
 |
