Quarri Technologies Protect On Q v2.7
Strengths: Added security to web browsing, and provides protection to any PC used with a near-zero footprint on the device.
Weaknesses: Limited endpoint protection features; reporting.
Verdict: Does what it is designed to do very well; not a full-featured endpoint offering, but a very good web app protection tool.
Protect On Q (POQ) from Quarri Technologies is a security software solution that empowers organizations to protect browser-delivered content from compromise on the endpoint. POQ enables IT professionals to deliver and enforce secure web sessions on-demand that prevent the unauthorized use and replication of confidential data while it's in transport and use. The solution works by protecting web sessions from pre-authentication to logout, with minimal installation requirements and without leaving installed software behind on the accessing device.
The POQ-hardened browser shields sensitive data from keyloggers, frame grabbers, session hijacking, cache miners and other malware, while blocking inbound attacks as well. POQ also enables organizations to enforce security policies that prevent end-users from copying, saving, printing or screen-capturing browser-delivered data, including from browser-launched processes, like Adobe Reader, Microsoft Office or ZIP files. POQ is delivered on the fly when end-users login, ensuring privacy by encrypting session data, including cache files, cookies, password store and history. All session data is overwritten and deleted at the end of the session. POQ also protects against session hijacking by controlling all browser networking.
Before installation of the POQ application, Java and Tomcat (or another Java servlet container) must be installed and operating. The Manager installs into Tomcat 6+ or other servlet engines with Java 6+. The Server installs into Tomcat 6+ or other servlet engines with Java 6+. After Java and Tomcat are installed, the POQ server and manager installation is fairly straightforward. One downloads and copies the WAR files into the Tomcat web apps directory, restart and then access the console via a browser through the local host address. The first thing one sees in the console is the policy screen. Administrators use the policy manager to create policies and can set the default protections through the security settings that control how POQ will handle/prevent malware.
POQ enables organizations to define security policies that deliver application-specific policy settings that are packaged with the binary Enforcer components. The provisioning server can be the web application server or a remote standalone server. POQ enforces security only in the protected session. No other browser instances or applications are affected. POQ integrates directly with web servers or with popular web gateway front ends. The product can be configured to either be optional: end-user clicks a link on a web page to start the protected session; or required: end-user must be running a POQ browser in order to access the web resources
Standard eight-hours-a-day/five-days-a-week technical support is included along with all software updates during the subscription term, while 24/7 premium assistance is available for a 15 percent addition to the software subscription fee. Documentation is good and helped us through the install and configuration activities.