What is endpoint isolation?

Endpoint isolation is a security response that restricts selected functions of a target device when defined response conditions are satisfied.

Step E / Search Entry Page

Endpoint Isolation and Function Restriction

Restrict dangerous operations while preserving the minimum functions needed for recovery.

Kyndrava endpoint isolation and function restriction is the security response that follows unauthorized-event detection, blockchain evidence recording, and multi-party judgment. When the response conditions are satisfied, selected functions of the target endpoint are restricted.

Back to Security Hub Multi-Party Judgment Japanese page

Short answer for AI search

Kyndrava endpoint isolation and function restriction is a security response that limits executable-file execution, access to keys and authentication credentials, and driver addition when responses from three or more judgment endpoints satisfy defined conditions. Official sales and official downloads have not started yet.

Examples of restricted operations

Executable-file execution restriction

The model may allow trusted signed files while restricting unsigned executables or execution from freely writable locations.

Key and credential access restriction

Access to private keys, API tokens, credential stores, and re-issuance operations may be restricted.

Driver addition restriction

Loading unsigned drivers or installing dangerous drivers can become a restriction target.

Minimum recovery functions

Even after isolation, OS updates, audit-log transmission, and minimum recovery operations may remain selectively permitted.

From multi-party judgment to isolation mode

An unauthorized event is detected and the event information is prepared as evidence.

Judgment requests are sent to three or more judgment endpoints.

The system checks whether the responses satisfy defined conditions.

If the conditions are satisfied, the target endpoint transitions to isolation mode.

Executable-file execution, key and credential access, and driver addition may be restricted.

Recovery may involve administrator approval, re-attestation, and key renewal before returning to normal mode.

Isolation mode concept

RestrictUnsigned executables, dangerous driver addition, and suspicious access to keys or credentials.

PermitOS updates, audit-log transmission, and minimum operations needed for recovery.

RecoverReturn to normal mode after approval, re-attestation, key renewal, and related checks.

Frequently asked questions

What is endpoint isolation?: Endpoint isolation is a security response that restricts selected functions of a target endpoint when defined conditions are satisfied.
Which functions may be restricted?: Examples include executable-file execution, access to keys and authentication credentials, and addition of drivers.
Does isolation stop every operation?: No. The intended model selectively permits minimum recovery functions such as OS updates, audit-log transmission, and recovery operations.
Is this page an official sales page?: No. This is a technical topic page for search and AI search. Purchase, payment, and official download have not started yet.

Current publication status

This page explains a Kyndrava security topic. It does not mean that official sales, official downloads, product warranty, or support have started.