Key Advantages -Zero-Touch Application Whitelisting -Active and Passive Whitelisting allows flexible protection for SOE and non SOE Environments -Security as a Service means you are always up to date and protected -Active Mode Prevents Unapproved and Malicious Applications from Running -Uses sophisticated machine learning to learn your behaviour in Passive Mode -Designed from the ground up to have very low overheads to keep total costs down -Leverage anti-virus in Passive Mode -Uses Application Profiling and Indicators of Compromise (IOC’s) in Passive mode. - Light Weight and Tiny Footprint, supporting 1 Endpoint to Tens of Thousands -Switch between Active and Passive modes for weekly patch updates -Seamless integration with the Felix List Master (FLM) Supported platforms Windows 7, 8.x and 10 Introduction Felix Enforcer is our Zero-Touch Anti-Malware and Application Whitelisting solution. It is a downloadable application that once installed provides you protection against malicious software and also gives you the ability to lock down your endpoint and only allow your approved applications to run. As with all our products it is simple to use and intuitive. Felix Enforcer has two running modes, Passive Mode and Active Mode. When in Passive mode, Felix Enforcer checks every application you open against our Felix Information Exchange (FIX) to ensure that the application you are opening is not malicious. Passive mode requires an internet connection to work properly. Once you’ve opened that application, and we have checked to make sure it’s not malicious, Felix Enforcer will remember that application and add it to your list of approved applications. When in Active Mode, Felix Enforcer will lock down the endpoint to only allow the approved applications to run. Nothing new will execute, whether it’s malicious or not and does not require an internet connection. We recommend that you switch to Active mode whenever you are browsing the net or opening your emails. Or, for complete security, you can create your list of approved applications and switch to Active mode, only returning to Passive mode when adding new or updating existing applications or applying operating system updates. This will provide you with a very high level of Cybersecurity. Use Cases Felix Enforcer has multiple use cases such as standalone endpoints from the Enterprise to the consumer, server environments or companies who wish to deploy a zero-touch application whitelisting solution in a simplified manner. Due to the versatility of Felix Endpoint solutions, Felix Enforcer can seamlessly integrate with the Felix List Master, Felix Vigilance. Recommended Architecture Our recommended architecture is to use Felix Vigilance for a higher security and application assurance in standard operating environments (SOE) and to provide a whitelist distribution mechanism to Felix Enforcer endpoints. Felix Vigilance performs real-time application profiling to provide the highest level of application assurance (malware free) for the selected application whitelist. Please refer to the Felix Vigilance datasheet for further information. Felix Enforcer Application Details Felix Enforcer has been designed to be extremely lightweight, only using less than 3% CPU and less than 250mb of RAM. The installer itself is only 80mb in size. Felix Enforcer requires to communicate with our Australian Signals Directorate (ASD) approved cloud in order to check your applications are not malicious when in Passive mode.