TPSecure controls startup and application activity, thus ensuring the integrity of the software during the operation and maintenance of the system in the last known good state. Because of this, TPSecure protects the system against all types of malware, unauthorized changes and access to data, without the need for updates.
TPSecure is optimally suited for the protection of self-service devices, using both low and high-speed communication channels. To deploy and change control policies, TPSecure has its own control system. In addition, TPSecure supports already installed IT-infrastructure management tools: Microsoft SCCM, HP OpenView, IBM Tivoli and others.
TPSecure has functionality of flexible adjustment of user-defined rules for both individual applications, and for their groups. This allows that TPSecure can be integrated with specialized software to control its integrity, to protect against changes in the code, to protect stored data locally, including temporary application files.
TPSecure is a comprehensive package software. It contains of all the necessary elements for a complete set of ATM software protection, without having to buy and install additional modules and other components: a centralized management console, built-in Firewall, anti-virus engine, a protected channel of communication between the client and server, functionality of logging and reporting about concrete incidents, applications control, connecting and using external / foreign devices control (laptops, USB-drives, CD- and DVD-ROM drive, etc.) and much more.
Protects all executable software on the system by detecting any unauthorized activation attempt and preventing the process from launching before damage can occur.
Specially-designated user account for potentially vulnerable software provides system-level privilege controls to block dangerous software activity
Controls how different applications can access files and folders, registry keys, external devices, and network resources. User-driven rules can be created to control application activity.
Can be deployed using push, standard, or silent installation mode; configuration settings can also be cloned from a standard device.
Client remote control can be disabled to permit disconnected devices or devices with low bandwidth connections to work without central management.
Granular control over access to and use of external USB storage, CDs/DVDs, COM and LPT ports, autorun control and the ability to set exclusions by device type, name, vendor and ID. Protected CDs/DVDs are recognized and accepted while all others are blocked.
Shadow mode provides constant monitoring of devices that cannot be detected or removed by service personnel. All data copy activities, including copying to removable media such as skimmers, is monitored in shadow mode and alerts sent to the management console. A forensic “camera” views and records device screen continuously to capture accidental or malicious insider activities.
TPSecure processes cannot be stopped or killed, even with high-level administrative rights. Additionally, the client regularly sends heartbeat status reports to the management console.
TPSecure has its own control system, including a centralized management console.
Microsoft SCCM, IBM Tivoli, HP OpenView or other system management software can be used to manage TPSecure configuration centrally.
TPSecure helps organizations meet PCI DSS compliance and reduce the risk of financial fraud.
TPSecure can be delivered in various ways, providing flexible integration and deployment capabilities. These include: standard components and settings, custom components and settings based on customer requirements, binary libraries (SDK), or even source code.*
* Subject to individual contract negotiations