SensiveGuard Screenshot

Following shows some functionality with screen snapshots of the SensiveGuard program

FIG.1 The first window shows network and file protection status, and three buttons ("Setting", "Log", "Close")
for setting policies, viewing logs, and minimizing the window to a taskbar tray icon. The two "Stop policies"
buttons allow user to temporarily bypass the network security protection or the file security protection,
respectively.

FIG.2 The intuitive network policy window. User can click on choice buttons to choose policies, deny or
allow a service under different conditions. Detailed policy modification or new policy creation can be done
by pressing the “Advanced” button.

FIG.3 The intuitive file policy window. User can add new folders and file types under protection of the two
default policies. Detailed policy modification or new policy creation can be done by pressing the “Advanced”
button.

FIG. 4 The advanced network policy window. Each policy can be edited by double clicking on it or pressing
the “Edit” button. New policy can be created by pressing the "Add" button. Policies can be deleted by
highlighting the policies and pressing the "Remove" button.

FIG.5 A network policy editing window. Program, network protocol, remote address, connection direction,
and security actions can be changed. Remote address can specify an address group. Three address
groups are created by default: any-remote group comprising any remote address, local-network group
comprising any local subnet address, and the Internet group comprising any remote address except the
local-network. New address group can be created to comprise any addresses or subnets. There are three
security actions for choice: Allow, Deny, Warn. Warn means real-time suspension of the access and asking
for user approval. Different security actions can be selected under different conditions: if access is initiated
by user (if "Or if there's any user activity" is checked, any user activity will be considered as user initiation),
and if access is not initiated by user. If "Allow access at auto-startup" is checked, the access is allowed at
the beginning when the program is auto-started at system startup time.

FIG. 6 The advanced file policy window. Each policy can be edited by double clicking on it or pressing the
“Edit” button. New policy can be created by pressing the "Add" button. Policies can be deleted by
highlighting the policies and pressing the "Remove" button.

FIG. 7 A file policy editing window. Program, list of folders and file types, and security actions can be
changed. The three buttons "Add", "Edit", "Delete" are used to add, edit, and delete folder and file types,
respectively.

FIG. 8 The network access log window. Each network access is logged with time-stamp, program that
initiated the access, connection direction, remote address, protocol and port, user-initiation condition, and
status (denied or allowed). The "Choose a day" window allows user to view logging for any past day.

FIG. 9 The file access log window. Each critical file access covered by a file policy is logged with
time-stamp, program that initiated the access, access command, file name, folder, user-initiation condition,
and status (denied or allowed). The "Choose a day" window allows user to view logging for any past day.

FIG. 10 A real-time popup window showing a suspended access. User can click on "Allow" button to allow
the access, or click on "Deny" to deny it. A new policy will be automatically created upon user's choice.