Overview

With Comodo’s Advanced Endpoint Protection (AEP), all unknown, untrusted files, processes and applications are contained in a secure environment while under investigation, then determined to be bad or good. All known bad files are automatically deleted, never affecting the system. Meanwhile, all unknown files are contained for the shortest time possible. Comodo’s local and cloud-based Specialized Threat Analysis and Protection (STAP) quickly moves files to a verdict of known good or known bad. As your users introduce new unknown and possibly malicious applications externally from the device, you can automatically force them to run in isolation, never risking corporate data. Comodo’s local STAP layer, VirusScope, first analyzes application behavior and actions running inside or outside of containment and leverages multiple techniques to determine any malicious intent. Valkyrie, Comodo’s second, cloud-based STAP layer, correlates VirusScope’s local view of the file’s activity with a global view. This reduces false positives and false negatives, providing an accelerated verdict of malware at the endpoint. The result is that unknown files stay in containment for the shortest time of any containment solution on the market, with minimal impact on the end user experience or workflows.