EPP
Definition
Endpoint Protection Platform (EPP) is a security solution designed to prevent a variety of threats on endpoint devices such as desktops, laptops, and servers. EPP solutions typically include antivirus, anti-malware, and firewall capabilities, and may also offer features like intrusion prevention, data encryption, and device control. The primary goal of EPP is to detect and block threats before they can compromise the endpoint, providing a first line of defense in an organization’s security posture.
Secure Settings Example
endpointProtection:
antivirus:
enabled: true
realTimeProtection: true
scheduledScans:
frequency: daily
time: "02:00"
firewall:
enabled: true
defaultAction: deny
allowedPorts:
- 80
- 443
intrusionPrevention:
enabled: true
rulesUpdate: auto
dataEncryption:
enabled: true
encryptionAlgorithm: AES-256
Insecure Settings Example
endpointProtection:
antivirus:
enabled: false
firewall:
enabled: true
defaultAction: allow
allowedPorts:
- 80
- 443
- 3389
intrusionPrevention:
enabled: false
dataEncryption:
enabled: false