AntiCopy is targeted to security administrators, and enables them to create and enforce policies specifically governing the use of portable storage devices on end-user machines. The Windows-based (2000 Pro|Server/XP Pro/Server 2003) software allows administrators to define policies that prevent the use (and attempted uses) of storage devices including USB Flash drives, external drives, Zip drives, and iPods; handhelds, such as Blackberry, Windows Mobile, or Palm OS devices; and more. Additionally, the platform provides auditing capabilities; logging details of the attempted and actual uses of the storage devices.

The platform consists of an agent that is deployed to the end user machines (the vendor states that the agent can be deployed manually, or via any .msi compliant software distribution tool) and a centralized Management Console that allows the administrator to define the access policies. The agents communicate with the Management Console via the AntiCopy Management Service; such communications include both the receipt of newly defined policies by the agent, as well as the transmission of audit data (both attempts to use storage devices, as well as their actual usage--i.e., successful connection attempts and files copied) back to a central repository, where it is available for forensic analysis (the vendor states that the agents check in with the Management Service on a "regular basis"). Audit data can be viewed and filtered from within the console. Once activated, the agent enforces its known policies whether the endpoint is connected to the LAN or not.

The policy-creation process is wizard driven, and can be applied to specific users, groups, or computer groups; this latter possibility allowing a specific user to access or not access storage devices based on the computer they are currently using. Users and group definitions can be imported from Active Directory. Other policy creation features include the ability to designate storage size restrictions (where access to devices below a specified capacity are allowed, while larger devices are denied), the ability to define whitelists that enable specific devices (by Device ID and serial number) to be accessed even if their device type has been blocked, and the ability of the administrator to provide temporary passcodes as needed that will allow an individual to temporarily access an otherwise blocked device. Such passcodes will work for a limited time only; the actual time limit is specified by the administrator.

AntiCopy is available both in an Enterprise Edition (which served as the basis for this product briefing) and a Personal Edition, which allows for the designation of access controls on a single PC and is free for non-commercial use.

AntiCopy Enterprise Edition is expected to be available within the next 30 days, with a price of $19.95 per workstation.

Visit the VolumeShield Web site for further information. (VolumeShield is a division of BBS Technologies.)