DesktopStandard Introduces PolicyMaker™ Application Security, a Group Policy Extension for Implementing ‘Least Privilege’ Security

Reduces or Elevates Permissions by Application or Task on Windows Desktops

San Francisco (RSA Conference, February 14, 2005) – DesktopStandard Corporation (formerly AutoProf) today announced the release of PolicyMaker™ Application Security (PMAS), a software solution that enables network administrators to enforce the ‘least privilege’ security principle on Windows desktops via Microsoft’s Group Policy change and configuration management system. PMAS is the first product that makes it possible to reduce or elevate permissions on a per-application or per-task basis, resolving longstanding barriers to implementation of the least privilege best practice.

With this add-on to the Group Policy Management Console (GPMC), administrators can adjust application privilege levels to the lowest possible point in order to limit damages stemming from network attacks or user error. The ability to control security at such a granular level also can help facilitate compliance with regulatory mandates such as the Sarbanes-Oxley, HIPAA and Gramm-Leach-Bliley acts.

The product allows administrators to:

• Elevate the permission level for restricted users who are performing selected tasks or running applications that require higher privileges than those to which the user is normally entitled. This eliminates the need to raise each user’s privilege levels for all applications and thereby expose the network to unnecessary risk.
• Reduce the permission level for administrators working on general applications, such as Internet Explorer and Microsoft Outlook. This avoids the use of full administrative permissions for applications that do not require it without the need to log out and then in as a different user, use the Windows RunAs utility to work under another user’s name, or invoke other complicated workarounds that reduce productivity.

“The ‘least privilege’ model has long been a security best practice, but it has been difficult if not impossible to put into effect,” said Kevin Sullivan, PolicyMaker Product Manager at DesktopStandard Corporation. “Our PolicyMaker Application Security solution makes it possible to implement this standard for the first time, all from within the familiar Group Policy environment.”

PMAS is the newest addition to DesktopStandard’s PolicyMaker™ line of Group Policy Extensions, which also includes PolicyMaker™ Standard Edition for rapid configuration of Windows desktops across an enterprise; PolicyMaker™ Software Update for Group Policy-based patch management; and the free PolicyMaker™ Registry Extension for flexible management of registry policy.

The complete suite of PolicyMaker products offers a total of 23 extensions to the Group Policy system that has been integrated with Active Directory since the release of Windows 2000. These extensions complement the 11 native extensions that ship with Windows.

All PolicyMaker products seamlessly integrate with Microsoft’s Group Policy Management Console, including backup, restore, import, copy, edit, and RSoP capabilities. PolicyMaker policy settings can be imported directly using drag and drop and a variety of local and remote computer browsers and wizards, and each setting can be targeted using any of 25 graphical filtering categories.

Pricing, Specifications and Availability
PolicyMaker Application Security is available immediately from DesktopStandard and authorized resellers. Pricing starts at $25 per seat for enterprises with up to 500 computers, including one year of upgrade assurance and technical support. Volume discounts are available for larger organizations. PolicyMaker supports Windows 2000, XP and 2003 Server, Terminal Server, MetaFrame and all versions of Outlook, Office and Internet Explorer.

About DesktopStandard Corporation
DesktopStandard Corporation (formerly AutoProf) is the leading developer of Group Policy-based desktop management products. The company has over 3,000 customers, over 3 million desktops under management, and a worldwide network of integrators and resellers. DesktopStandard is a Microsoft Gold Certified Partner. PolicyMaker Standard Edition (formerly Policy Maker Professional), the first product based on Group Policy Extension, was released in late 2003, followed by the release of PolicyMaker Software Update in 2004, and PolicyMaker Application Security in 2005. PolicyMaker was recently awarded the 2004 Active Directory Product of the Year – Gold Award by the editors of TechTarget’s Windows Media Group. For more information, visit www.desktopstandard.com.