PREVENTING URL CIRCUMVENTION
ENSURING USERS CANNOT CIRCUMVENT WEB USAGE CONTROLS
Many cloud-based web security solutions fail to prevent users from circumventing usage controls. Clever employees can simply go to anonymizing proxies and proxy bypass sites, which promise to help them get past “pesky URL or IP based filters.”
While URL filtering policies already block most of these sites, new ones pop up quickly and technically astute employees can build their own anonymizers using simple downloadable code. Existing lists of bad URLs will not contain newly established sites or homegrown versions.
The Webroot SecureAnywhere Web Security Service employs propriety technology that is specifically designed to defeat users who attempt to either access blocked pages or circumvent monitoring by using proxy bypass sites and anonymizing proxies.
With Webroot Web Security we’ve been able to monitor user activity and ensure our network isn’t endangered through recreational Web surfing. The blocked access report was a real eye-opener - we were stunned to see how many threats were passing through our system. Now we’re taking an in-depth look at all of the reporting features like bandwidth usage, page requests and impacted productivity so we can demonstrate benefits to our management team.
- Leo Fredette, Systems Administrator, Massachusetts Association of Insurance Agents
Advanced Tamperproof Desktop Web Proxy (DWP) Agent
Users commonly attempt to get around web usage policies by simply uninstalling, bypassing or switching off existing security measures. Webroot provides the capability to transparently deploy the Desktop Web Proxy (DWP) agent and also make it impossible for users to turn off or kill the agent.
Unlike other authentication and directional proxy controls such as flash cookies, this advanced agent ensures users cannot circumvent the Webroot SecureAnywhere Web Security Service. It also enables consistent enforcement of web usage policies—whether users are in the office or at any other location.
The Benefits of the Webroot DWP
Once installed on users’ computers, the Webroot DWP to administer many aspects of the service remotely—from controlling which sites will not be filtered to transparently handling roaming user hot spots. It also automatically configures the users’ browsers to direct all web traffic via Webroot data centers, or optionally switch to use any on-site caching proxies already present inside your network.
The DWP automatically creates new users in the service, eliminating the need to manually enter users or synchronize with Active Directory*. It also provides transparent user authentication with no user login needed, and provides the ability to authenticate individual users into multi-tenant environments such as Citrix and Terminal Services.
The DWP can also automatically configure user endpoints to route all HTTP and HTTPS web traffic to the most optimal Internet access point regardless of geographic location. This further allows you to monitor and protect users outside your network without ever having to backhaul their traffic via a VPN to the corporate network.
Finally, DWP intelligently negotiates portals and hotspots, minimizing the need for mobile or remote user IT support. All agent updates are completely automatic while remaining under the full control of the administrator.* Both options are still available and may seamlessly be used alongside the installation of the DWP agent.