Nowadays, the term "endpoint" is not only a classical PC and laptop. It is also mobile platforms such as tablets or smartphones. At the time of virtualization and the Internet of Things, even thin clients and PLC affect industrial equipment operation. Let's not forget their peripherals either. All of these devices have an operating system or at least firmware that needs to be under control.
Modern endpoint protection is based on the simultaneous use of multiple technologies, protecting files, and implementing operating systems and their running processes. Today's solutions typically include Antivirus, Antispam, Host Firewall & IPS, Device & Application Control, WEB Filtering, and some Device Management features. All of this must ensure maximum protection and yet present minimal burden for the system.
Antivirus is essential, especially with Microsoft system, but also with Linux and macOS. Antispam helps to prevent threats from e-mails.
Host firewall, IPS
Host Firewall controls network communication based on services, ports, and IP addresses, but it also distinguishes specific applications. Intrusion Prevention System then helps to detect suspicious activities right from the protocol of particular applications.
Device & application control
Device control is essential to prevent removable devices from malware transmission. Application control is considered as today's basics in cybersecurity.
WEB filtering, device management
Another important aspect that prevents users from accessing webs with a malicious code is WEB filtering. Device management then helps to increase security by defining HW standards.