User Guide

Overview

Metadefender Kiosk helps protect your network by enabling control over the flow of data into and out of your organization. It can be used as a media scanning station on your own hardware or on OPSWAT's custom-made kiosks. Typically, media such as USB devices, DVDs, card readers, SD cards, flash drives, or floppy disks, are scanned by Metadefender Kiosk by inserting the media device into the appropriate drive. After the scan is complete, Kiosk generates a detailed report.

images/download/attachments/5566819/Overview.png

This user guide covers installing, configuring, upgrading, using, and troubleshooting Metadefender Kiosk.

Key Features

  • Protection against zero-day attacks (Metadefender Core integration).

  • Customized data security policies.

  • Control over data flow.

  • System restore.

  • Active Directory authentication.

  • Custom Authentication.

  • Portable Media including floppy disks, SD cards, CDs, DVDs, encrypted USB and disc, and more.

  • UI localization/internalization (comes with English, Arabic, Hebrew, Japanese, Korean and the ability to manually add any other language).

  • Securely wipe USB drives.

  • Easier system hardening.

User authentication

Metadefender Kiosk has the following authentication features:

Peripheral media

Metadefender Kiosk automatically detects multiple peripheral media insertions for the following media types:

  • USB devices*

  • CDs/DVDs/Blu-ray

  • Card readers

  • SD cards

  • Floppy disks

* Not all USB devices are currently supported. If you have a specific device you need supported, please contact OPSWAT support.

Encrypted USB devices

Metadefender Kiosk can unlock encrypted USB devices with a given password. Metadefender Kiosk supports the following encrypted USB devices:

  • Biocryptodisk-ISPX

  • Buffalo RUF2-HSCT and RUF3-HSL

  • IronKey S200

  • IronKey D250

  • Kanguru Defender Elite 30

  • Kanguru 2000 and 3000

  • Kingston DataTraveler Vault Privacy

  • SanDisk Cruzer Enterprise FIPS Edition

  • SanDisk Cruzer Contour

  • U3 based USBs

  • EncryptDisc CDs/DVDs

  • Microsoft BitLocker: Metadefender Kiosk supports BitLocker To Go using passwords. Metadefender Kiosk does not support BitLocker encryption using key files, smart cards, or VHD (Virtual Hard Drive) BitLocker encryptions.

  • McAfee Complete Data Protection when McAfee file and Removable Media Protection client is installed

  • USB Flash Security

Media handling

Metadefender Kiosk's media handling features include the following:

  • Can scan drives with multiple partitions

  • Can perform a full or partial media scan

  • Can wipe/format USB drives

  • Supports integration with Metadefender SFT ( Secure File Transfer) for accessing and downloading scanned files

  • USB device soft eject

  • CD/DVD eject

Processing files

Metadefender Kiosk uses Metadefender Core to process files. Metadefender Core has the following processing features:

  • Multi-engine scanning of files

  • Data sanitation

  • Heuristics for zero-day threats

  • Archive extraction

  • File type verification

  • Workflow engines

Scanning session results

After scanning media, Metadefender Kiosk allows you to view detailed scan logs, and print scan results.

Customizable interface

The Metadefender Kiosk interface supports English, Arabic, Hebrew, Japanese, Korean, German, and Vietnamese languages.

System hardening

Metadefender Kiosk comes with a variety of system hardening features for maximum security.

  • Disabled autorun

  • Users can only exit by pressing ALT+F4 and, if Kiosk is configured to require a password to exit, entering the admin password

  • Blocks the ability to copy files to the system

  • Blocks the ability to execute files on the system

  • Runs automatically on system startup

  • Configurable file policy by file type

  • Select allowed/blocked and skipped files by file type and size

  • Select file extensions to be taken under consideration when a file type mismatch is performed