DeviceLock 6.0 Tightens Grip on Data Loss via Unauthorized Removable Storage Devices

Includes native Microsoft Active Directory Group Policy integration for easy roll-out and management across a large enterprise

SAN RAMON, CA -- September 13, 2006 -- SmartLine has released DeviceLock® v6.0 which comprehensively addresses the challenge of enforcing endpoint security policy and auditing activity for all plug-and-play ports, drives, and removable devices on Windows computers. DeviceLock v6.0 adds simplified policy enforcement, Media White List capabilities, and more extensive auditing options including advanced data shadowing. DeviceLock administrators have precision control over which users and groups have what level of access to which devices on which computers and when that access is allowed. DeviceLock can discretely manage any physical Windows port and drive with its layered security architecture and White List options while ensuring that even local computer administrators cannot tamper with its enforcement.

"The harsh reality is corporate customers often need to be protected from themselves." said Jeremy Moskowitz, group policy MVP who runs "Out of the box, Group Policy might not give administrators the power they need to really protect corporate assets. Windows XP/SP2 does provide a rudimentary way to control some USB functions, but it doesn't go far enough."

DeviceLock’s new optional data shadowing capability significantly enhances the corporate IT auditor’s ability to ensure that sensitive information has not left the premises on removable media. It captures full copies of files that are copied to authorized removable devices, burned to CD/DVD, or printed by authorized end users. The shadow copies are then available for further analysis of any compressed, encrypted, or misnamed files, revealing any breaches of the company’s data integrity policy.

DeviceLock will also capture log information on the user, host computer, associated time stamps, and other pertinent data to isolate the source of any breach. Now IT security officials can add this extra layer of monitoring to users with access to high-sensitivity data and establish one more deterrent to policy violators and ‘inside job’ perpetrators.

Shadow copies are stored on a centralized component of an existing server and any existing ODBC-compliant SQL infrastructure of the customer’s choosing. Otherwise, DeviceLock can be deployed and managed from any administrative workstation or server with no added infrastructure. DeviceLock’s new Media White List feature allows you to authorize access to specific DVD/CD-ROM disks, uniquely identified by data signature, even when DeviceLock® has otherwise blocked the DVD/CD-ROM drive. A convenience when DVDs/CD-ROM disks are routinely used for the distribution of new software or instruction manuals, Media White Listing can also specify allowed users and groups, so that only authorized users are able to access the contents of the DVD or CD-ROM.

DeviceLock v6.0 provides an improved and fully integrated Active Directory(AD) Group Policy Manager MMC console that snaps into the AD Group Policy Editor to directly create native Group Policy Objects for distributing peripheral port/device security settings. This allows DeviceLock to be as scalable as any AD environment and to securely and efficiently manage hundreds of thousands of Windows desktops with a tool that is familiar to all Windows administrators. DeviceLock can also manage any LDAP network of Windows computers (Novell, OpenLDAP, etc.), including mixed network operating system environments.

DeviceLock pricing starts at $35 per license with volume discounts beginning at 25 licenses. Pricing for a site managing 1,000 computers, for example, is set at $7,400 (US$). There are additional discounts for educational institutions. A free, fully functional demo is available for download from

About the Company

SmartLine Inc. ( develops integrated and cost-effective network management software solutions. For additional technical or purchasing information, please contact SmartLine’s exclusive North American partner, AdvancedForce InfoSecurity Solutions (, at 925.277.3420 or