Lumension Security, formerly called Patchlink, now has a new focus to go with its new name: whitelisting.
In a video interview at the AusCERT 2008 security conference last week, Lumension's senior vice president Andrew Clarke explained how whitelists could help fight data leakage.
"There is a tremendous amount of data potentially being brought in or taken out [of enterprises]. Whitelisting defines who can bring in devices, what devices they can use, whether those devices can be read from or written to.
"We are controlling data, controlling whether people can write data and combining with whole disk encryption to make it a policy decision — so if someone is writing data to an iPod or removal media then it will be encrypted, so if it is being moved around the world, it will only be moved in an encrypted state," Clarke told ZDNet.com.au.
According to Clarke, the benefits of whitelisting outweigh those of blacklisting: "Many traditional businesses have been implementing antivirus, anti-malware and anti-spyware technologies and it has been an effective technology but the threat has grown dramatically so there is a continuous battle to keep signature lists up to date," he said.
"We have been extending the presence of Patchlink outside of the traditional patch management and into the broader vulnerability solution ... a name change would definitely benefit us in communicating the message to the marketplace," Clarke said at the time.