Endpoint Security Server and Client Communication
R81 Harmony Endpoint Server Administration Guide|27
Client to Server Communication
These services are used by the client to communicate with the Endpoint Policy Server or the
Endpoint Security Management Server.
The client is always the initiator of the connections.
Service
(Protocol/Port)
Communication Notes
HTTPS
(TCP/443)
Most
communication is
over HTTPS
TLSv1.2
encryption.
These are two examples:
n
Endpoint registration
n
New file encryption key retrieval
Policy downloads The policy files themselves are encrypted with
AES.
Heartbeat A periodic client connection to the server. The
client uses this connection to inform the server
about changes in the policy status and
compliance. You can configure the
Heartbeat
interval
. See
"The Heartbeat Interval" on the next
page
Application Control
queries
These are queries for the reputation of unknown
applications.
Log uploads These connections send logs to the server.
For more sensitive
services, the
payload is
encrypted using a
proprietary Check
Point protocol.
These are the encrypted sensitive services:
n
Full Disk Encryption Recovery Data Upload
n
Media Encryption & Port Protection Key
Exchange
n
Full Disk Encryption User Acquisition &
User credentials.
HTTPS (TCP/80) Anti-Malware
signature updates
Verification is done by the engine before loading
the signatures, and during the update process.
HTTPS
(TCP/443)
Client package
downloads
The packages are signed and verified on the
client before being installed.
To Next Page
Loading...
