- 10 Microsoft research projects
- 10 kitchen gadgets for the geek gourmet
- Verizon trounces competition
- Smartphone smackdown: Storm vs. iPhone
- FBI warns of holiday cyber scams
Many organizations would like to keep their network users from adding unauthorized software to their desktops, and the U.S. Army is no different.
Since early this year, the U.S. Army Information Management Support Center, which supports the Pentagon staff, has deployed software on about 11,000 desktop machines that watches for unauthorized applications. If one is discovered, the monitoring software reports back so an Army oversight group called the Configuration Control Board, which lets the user also know about the discovery so a decision can be made about whether the application should be allowed.
If there’s no justification for using the software, the unauthorized application can be automatically deleted remotely.
According to John Brehm, senior systems engineer at Serco, a systems integration firm aiding the Army in this program, the
goal is to identify unauthorized applications and enforce policy while giving users the opportunity to explain why the software
is on their desktop.
“A directive came out from the CIO in the Army because there was a lot of unauthorized software running,” Brehm says. “This is potentially unsafe.”
The software selected to assist in this policy compliance effort is Triumfant’s Resolution Manager, which the Army selected late last year and rolled out at the Pentagon between January and August of this year.
The Triumfant software, which the Army is running on Windows Vista and XP machines, works by means of template-based recognition filters that understand what’s authorized to run on the machines, taking periodic snapshots to see what’s there.
If it appears unauthorized software was added, Resolution Manager reports back so that the Army’s Configuration Control Board. “We flag it so it goes through a governance process,” Brehm says, noting the board meets at least every week to make decisions about any newly identified software on desktops.
While users have the opportunity to defend use of applications that may not yet be officially authorized, there do end up being many instances where the decision is made to delete the unwanted applications remotely. “You just flip a switch,” Brehm says. “We’ve removed a couple of thousand cases since February.”
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Comments (7)
Resolution ManagerBy Anonymous on October 27, 2008, 9:39 amThe local DOIM already scans desktops for 'unauthorized' software based on their concept of a template. There may be 3 users on the entire installation who work...
Reply | Read entire comment
The Resolution Manager gives the IT personnel the ability to "ReBy Anonymous on October 8, 2008, 5:01 pmThe Resolution Manager gives the IT personnel the ability to "Remediate" unauthorized applications. It can be set for Auto-Remediation, but typically is done only...
Reply | Read entire comment
Really I would think by the time they install the software it ruBy Anonymous on October 8, 2008, 4:58 pmReally I would think by the time they install the software it runs for a few days they then detect it and then make a call as to delete it or not is really stupid....
Reply | Read entire comment
Authorized SoftwareBy Anonymous on October 8, 2008, 12:22 pmI just checked the DoD and Army Authorized Software listings and I did not see where Triumfant's Resolution Manager was authorized to be ran on DoD networks/systems....
Reply | Read entire comment
SoftwareBy Anonymous on October 8, 2008, 12:20 pmThe Pentagon must be a loose cannon as most DoD users are totally locked down and can not install any programs on their computers. Lets get these prima donnas locked...
Reply | Read entire comment
View all comments