The update is required only for GeSWall Freeware users. GeSWall Professional Edition has no time limitations.

LeakWall Lite is a powerful yet simple Data Loss Prevention software that does not require administration and
- Performs audit and monitoring of data leaving your desktop and laptop computers
- Automatically detects suspicious activity leading to sensitive data leaks (patent pending Active Profiler)
- Does not require a server, only desktop components
- Supports silent installation, uninstallation and upgrade procedures which do not require reboot
- Provides powerful Reporter exposing reach set of analysis tools
- Free of charge for up to 5 computers

LeakWall Lite is a content monitoring and filtering software that monitors all data leak channels across networks and via devices.

To get started with LeakWall Lite please refer instructions provided in “2. Getting started” section of the user guide, page 5.

Please visit our web site to learn more on LeakWall Lite.

Download LeakWall Lite now.

• Performs monitoring of data leaving your desktop and laptop computers
• Automatically detects suspicious activity leading to sensitive data leaks
• Does not require a server, only desktop components
• Supports silent installation, uninstallation and upgrade procedures which do not require reboot
• Provides powerful Reporting Console exposing reach set of analysis tools
• Free of charge for up to 5 computers

The beta version of LeakWall Lite is now available for Windows 32-bit and 64-bit platforms. You are welcome to join the beta testing, just send a note to our technical support team.

So many organizations start from non-blocking, audit-only DLP policy. As a result they left with hundred thousand audit log entries with a little idea what to do with them.

To solve this problem GentleSecurity has invented a unique Active Profiling technology. The Active Profiler instantly analyzes audit trails and routinely creates behavior profiles relating to sensitive data operations. It automatically detects potential data leaks and sends detailed warning to a system administrator.

The Profiler is fully transparent control that prevents data leaks and does not require change of user behavior. This innovative approach turns DLP into a new commodity class, such as anti-virus solutions, breaking application barriers for many organizations.

How it operates

As illustrated on the figure Active Profiler has observed 312 users sending sensitive data and marked five of them with a high risk of causing data leak. An administrator then investigates suspicious user’s behavior by verifying how much data sent over various channels and examining the list of specific operations in order to take incident response actions.

The Active Profiler also analyzes applications and program component activities with the aim of spotting malware as illustrated on the figure below.

The dashboard contains number of critical metrics helping to evaluate current status and trends of data security.

The live demo has grabbed the attention of the conference attendees, attracting many visitors to the GentleSecurity booth. We really appreciate the positive feedback on Active Profiling and looking forward to turn DLP into a new commodity class, such as anti-virus solutions, breaking application barriers for many organizations.

LeakWall 3.0 has following new features:

Data Discovery
The feature assumes scanning of end-point’s local hard disk to identify classified files. Identified files should be logged with operation type “discovery”.

The discovery is performed in background scanning procedure that is running with lowest priority and does not affect end-point performance. LeakWall console expose new type of controlled operation called "discovery" in addition to "copy", "access" and "modify".

The “discovery” allows to identify locally stored confidential files and produce a comprehensive report that facilitates creation of LeakWall policy.

Encryption Action
Encryption action is a new action LeakWall policy may apply for the rule. The action mandates encryption of sensitive files. The encryption relies on Microsoft EFS (Encryption File System) that actually encrypt files. The action is available in conjunction with “discovery” operation.

Encrypted files are transparently accessible only by users who have Windows domain account. No knowledge of additional password or key is required.

Rule Overriding Option
It is possible that LeakWall policy may block a required operation, such as sending confidential data by e-mail, printing it or copying it to a memory stick. An operation might be critical and blocking might disrupt business process.

A solution would be LeakWall policy update in order to allow the specific blocked operation. However, the policy updates could be complicated and create sophisticated configuration. Moreover, update via Group Policy cannot be immediate and at average takes 30 minutes for settings to be delivered.

A better solution is rule overriding option. The option might be applied for every blocking policy rule. Once option is applied, every access denied message, which appears at tray, contains an unblocking link. Following the link user receive an operation code, number, that should be communicated to helpdesk administrator via phone or e-mail. Helpdesk administrator should send back a pass code number which unblocks the operation for user.

LeakWall access denied message are customizable in order to integrate proper message and helpdesk contacts.

64-bit version GeSWall is on the way and will be released for beta-testing soon. If you would like to participate in the beta-testing please send a message to our technical support.

LeakWall 2.1 has following new features:

Protected Agent mode

Protected Agent mode isolates LeakWall from users with administrative privileges. Quite often laptop users have administrative privileges allowing them unrestricted access to the operation system, data and applications. From now on, LeakWall integrates security measures that protect it from tampering by users with such administrative privileges. Once this feature is enabled, administrative users may not disable, stop, uninstall or delete LeakWall components, so preserving full control over confidential data.

Print-screen protection

Print-screen capability allows taking an image of the entire screen or individual windows, which may contain confidential data. Print-screen Protection effectively disables print-screen capability.

More controlled devices

In the version LeakWall adds controls for additional device classes including

• Scanners,
• Portable devices,
• Bluetooth ports.

The device classes are now controlled by LeakWall policy on a per-user basis.

E-mail address lists

The feature enables data control policy assignment to specified list of e-mail addresses. For instance, you may now create policies that allow sending confidential data to employees in your Luxembourg branch whilst prohibiting sending them to other destinations within or outside of the company.

Import/Export of LeakWall configurations

The entire set of LeakWall policies can now be exported and imported. This feature simplifies data control policy maintenance and provides configuration of LeakWall without Microsoft Active Directory, e.g.: in Novell environments.

64-bit Windows support

LeakWall agent can now run on 64-bit operation systems such as Windows XP, Windows Vista, Windows 7 or Windows Server 2003 / 2008.