Why should you use web filtering software in your company? The internet allows businesses of all sizes to access incredible amounts of knowledge and other helpful resources that are critical for business growth. Surely there’s no need to limit internet access in the workplace, right?
Here’s the thing – while the internet is an amazing tool when used appropriately, it also allows for plenty of undesirable consequences: Malicious hackers exfiltrating sensitive data, underaged persons discovering age-inappropriate content, and lost productivity when employees spend too much of their time on distracting websites.
In this CurrentWare guide, we will cover the most common uses for internet content filters, how websites are blocked, and how you can use CurrentWare’s web filtering software BrowseControl to take back control over the content accessed through your network.
Table of ContentsBrowseControl is an easy-to-use web filter that helps organizations enforce policies, improve productivity, reduce bandwidth consumption, and meet compliance requirements – no matter where their users are located.
With BrowseControl you can ensure a safe and productive environment by blocking high-risk, distracting, or inappropriate websites, improve network performance by blocking bandwidth hogs, and prevent users from using unsanctioned applications and software-as-a-service providers
BrowseControl’s security policies are enforced by a software agent that is installed on your user’s computers. This allows the solution to continue blocking websites and applications even when computers are taken off-site.
BrowseControl’s central console allows you to configure your security policies from the convenience of a web browser.
With BrowseControl you can Block or allow websites based on URL, category, domain, or IP address, assign custom policies for each group of computers or users, prevent users from launching specific applications, and block network ports to reduce the attack surface of your network
There are three key methods for blocking websites with BrowseControl:
The Blocked List allows you to block specific websites based on URL, domain, or IP address
Category Filtering allows you to block millions of websites across over 100 content categories including pornography, social media, and virus-infected sites.
and finally, you can use the Allowed List to allow specific websites that would otherwise be blocked based on their category, or for the greatest security and control you can block all websites except for those that are on the Allowed List.
When your users try to visit a blocked website they can either be presented with a custom warning message or directed to another site, such as a page with a reminder of your organization’s internet use policy.
With BrowseControl’s App Blocker you can prevent your users from launching specific applications.
Simply select the group you would like to restrict, enter the Original Filename of the application to the Application List, and add it to the blocked applications list.
When the user tries to launch the blocked application they can be presented with a custom warning message that alerts them of the restriction.
BrowseControl is best used in tandem with our computer monitoring software BrowseReporter. Using both solutions provides the visibility and control you need to ensure that your organization’s computers are being used appropriately.
Don’t let internet abuse run rampant in your organization. Take back control over web browsing with a free trial of BrowseControl.
Get started today by visiting CurrentWare.com/Download
If you have any technical questions during your evaluation our support team is available to help you over a phone call, live chat, or email.
Thank you!
BrowseControl is a versatile web filtering and content-control software.
With BrowseControl you can…
A wide variety of industries and organizations will use web filtering tools to blacklist websites that they consider to be unsafe, unproductive, or otherwise inappropriate for their users to access. The web filtering features of content-control software are used to enforce internet use policies by proactively blocking websites and applications.
Organizations That Commonly Use a Web Filter:
While the software used for blocking applications and filtering websites by these organizations works the same, the motivations they have for using it will vary. In the following sections, we will break down the most common reasons that schools, libraries, and private businesses use web filtering as part of their operations.
A web filter (also known as “content control software” or “web content filter”) is an internet access control solution that prevents employees, students, and other end-users from accessing content on the internet. A web filter blocks access to websites based on the URL, domain, IP address, or content category of the website. A web filter will allow or deny access to these sites using an Allow List (whitelist) and/or a Block List (blacklist).
Depending on the web content filtering method used these lists will either:
The most common websites to block are those with content that is offensive, inappropriate, or high-risk. Schools and businesses use web content filtering software to block access to enforce acceptable use policies, prevent their users from accessing certain content, and reducing web security risks by blocking dangerous websites.
As a network administrator, Joe is responsible for maintaining the network infrastructure of his company. Recently there have been complaints of high latency on the network leading to lost VOIP connections and difficulties using the internet.
Before making recommendations to invest in costly upgrades to the existing bandwidth, Joe used BrowseReporter’s bandwidth monitor to identify employees that were using excessive amounts of bandwidth. Thanks to BrowseReporter’s bandwidth usage reports, Joe quickly discovered that several employees were abusing the available bandwidth by streaming movies on Netflix during work hours.
After blocking access to Netflix with BrowseControl web filtering software, Joe reported the inappropriate use of technology to the department manager. After viewing the reports provided by Joe, the department manager agreed to review the company’s Acceptable Use of Technology policy with their team.
Zayn has noticed a serious decline in employee productivity in his office. To cut back on internet-based distractions, he has installed BrowseControl web filtering software on his employee’s computers to block access to unproductive websites during work hours.
As part of his CIPA compliance requirements, Tyler uses a web filter to help protect his underaged patrons from accessing age-inappropriate visual content.
As a librarian, Tyler is passionate about ensuring that his patrons have access to the resources they need to perform legitimate research. Because of this, Tyler has ensured that his web content filtering solution is easy-to-use so that everyone on his staff can disable the filters for specific users on request.
Sylvie is the HIPAA Security Officer for her company. She uses strict internet access controls to protect the sensitive personal health information (PHI) of patients against internet-based threats such as malware and unsanctioned cloud storage sites.
The use of internet filtering tools is a hot topic in the EdTech space. The key debate surrounding content filtering in schools and libraries is this: are web filters too restrictive?
Schools and libraries are in the tough position of determining how to implement content filtering in a way that balances intellectual freedom with the desire to protect networks against malware while also preventing their underaged internet users from accessing age-inappropriate content.
In the United States, the Schools and Libraries Program – better known as “E-rate” – requires that these institutions maintain CIPA compliance in order to qualify for discounts on their internet and telecommunication infrastructure.
Under CIPA, schools and libraries are required to implement content filtering technology that is designed to prevent underaged users from viewing inappropriate content on the internet. This has raised concerns that the required CIPA filters conflict with an American citizen’s First Amendment freedoms and the core values of librarianship.
Because schools and libraries that do not implement an internet filter for CIPA compliance are ineligible for highly sought-after discounts on critical internet and telecommunications technology, the use of web filters is naturally highly prevalent. While the intention of CIPA is to block underaged users from viewing inappropriate visual content, there is the potential that an overzealous implementation of filtering technologies will inadvertently block patrons from accessing legitimate research.
The Debate on Internet Filtering in Schools and Libraries:
To maintain a balance between ensuring intellectual freedom while simultaneously preventing access to objectionable content, the filtering software used to block internet access in libraries and schools must allow designated staff to easily disable the internet filter for a specific user after a request is made.
To mitigate classroom distractions, schools with one-to-one computing (“1:1”) programs rely on internet filters to ensure that their students are not distracted by technology during class time. Web filtering software allows students to access digital learning materials without unproductive websites and computer applications becoming a hindrance to their learning.
Colleges and universities are less concerned about directly blocking access to adult-oriented content on their network as the acceptable use of technology in education is more readily understood and followed by adult learners. K-12 schools are more restrictive with their internet access enforcement as students are still developing their digital literacy skills and are at a higher risk to inappropriately access objectionable content.
While some degree of filtering may be used in adult education institutions to block clearly objectionable content such as pornography, they are typically less restrictive with their internet access policies as they do not want to infringe on the legitimate research needs of their students. Internet filters are instead used as an added layer of protection against web-based cybersecurity risks.
Businesses typically place a greater emphasis on network and data security as their employees will have a direct connection to the networks that have access to sensitive data, whereas schools typically provide students with a designated network that is separate from the ones used to store and process sensitive data.
Why Businesses Use Content Filtering:
“Cyberloafing” is a term used to describe the phenomenon of employees surfing the internet for non-work reasons during paid working hours.
With reports showing that employees can spend as much as 2.5 hours per day on non-work internet activities, an employee making $15 per hour will cost their employer over $73,000 per year in unproductive internet browsing.
Managers that are concerned about time theft caused by excessive unproductive internet use will use web filters to block commonly abused websites such as social media and online gaming sites.
The use of the internet to harass coworkers in the workplace leads to a hostile work environment – this highly inappropriate use of workplace technology causes severe employee disengagement when the harassing behavior is not adequately addressed. While web filtering alone cannot fully prevent employee misconduct, the proactive blocking of inappropriate websites can reduce the opportunities for malicious employees to spread harmful content to their coworkers.
Web filters that include application blocking features will prevent employees from using peer-to-peer (P2P) file sharing platforms in the workplace by blocking access to the websites and applications that are used to download pirated materials.
Why Piracy In The Workplace Is Dangerous:
Healthcare organizations and government entities are often subject to strict regulatory requirements that mandate the use of technical safeguards to protect sensitive data in their custody. Internet filters are frequently deployed as an added layer of defense against external threats that can be transmitted through compromised and malicious websites.
Government & Healthcare Data Security Compliance Frameworks:
As government and healthcare organizations need to access a large quantity of sensitive data as part of providing critical services, they are often targeted for ransomware attacks. Ransomware is a type of malware that is used by cybercriminals to maliciously encrypt data on the victim’s system until they pay their attacker a ransom in the form of cryptocurrency.
Ransomware attacks have become increasingly common as members of malicious hacker networks increasingly supply would-be attackers with “Ransomware as a Service) (RaaS) platforms that allow them to easily execute ransomware attacks without needing to develop and execute their own programs. Web filtering helps fight against ransomware attacks by proactively blocking websites that are used to execute ‘drive-by downloads’ that infect a user’s machine with the ransomware software without their knowledge.
Content filtering software that can block Windows applications also protects against unauthorized computer programs (“Shadow IT”). Shadow IT programs can be a critical data security risk as they aren’t properly monitored and managed by the corporate IT department and employees can potentially be sharing confidential files through them.
There are well over 1 billion sites currently on the world wide web, and approximately 380 new websites are created every minute! With such a massive influx of information, how can web filtering keep up?
The two core components of identifying the websites that will be managed by your internet filtering software are its whitelists and blacklists.
Whitelist: A whitelist (aka an allowed list) is a list of the websites (domains), URLs, and ports that you would specifically like to allow on your network. Whitelisting is typically used in a deny-by-default approach when administrators would like to block access to the entire internet except for the websites on the whitelist.
Blacklist: A blacklist (aka a blocked list) is a list of the websites (domains), URLs, and ports that you would specifically like to block from your network. Manual blacklisting-only approaches are typically used when administrators want to allow access to the majority of the internet with a few exceptions.
Before manually configuring whitelists and blacklists, it helps to know the difference between a domain and a URL as they can be used in unique ways to further refine your internet filtering configuration.
URL filtering is best used to make unique refinements to an existing whitelist or blacklist. For example, if you are using BrowseControl’s Category Filtering feature to blacklist domains that pertain to specific categories you can make an exception for a specific URL by adding it to your whitelist.
Because of the substantial amount of websites on the web today, manually blacklisting websites simply isn’t enough to keep up. Internet filtering software with a category filtering database is designed to help network administrators manage their desired content restrictions more efficiently by allowing them to seamlessly block or allow millions of websites across hundreds of predefined categories in just a few clicks.
Category filtering is incredibly useful for blocking websites based on specific intents such as increasing productivity, preventing access to obscene content, and blocking access to websites that are known to be compromised by malware.
How to Use Category Filtering:
Port filtering blocks internet access using dedicated network port numbers that are standardized by the Internet Assigned Numbers Authority (IANA). Using port filtering, you can block access to network ports that are used for specific functions such as File Transfer Protocol (FTP), torrenting, and proxies.
While some web content filtering technologies use keywords to identify potentially objectionable content, a keyword filtering approach often leads to false positives. This unintentional over filtering of content based on keywords is known as the Scunthorpe problem; with keyword filtering in place any web pages related to Scunthorpe – an industrial town in Lincolnshire, England – will be wrongfully filtered.
This next section covers the general steps you can take to use a web filter in your company. If you would like personalized guidance and advice on how to use CurrentWare’s content control software BrowseControl to implement the best internet filtering for your organization, our expert technical support team is here to help.
Web and application filtering solutions are capable of much more than simply blocking websites and applications – the best internet filters come with a variety of features designed to provide you with the exact content filtering configuration needed to manage your network.
Features Included in the Best Internet Filtering Software:
As part of your internet management strategy, you can use internet monitoring in tandem with internet filtering. We’ve written a detailed overview of the different use-cases for internet filtering and monitoring in the past if you’d like to read more.
For the best results, many CurrentWare customers opt to use both methods to create a robust internet usage management ecosystem that addresses their policy enforcement needs while also providing valuable insights into how their workforce uses their organization’s assets.
Boston Centerless has made great use of CurrentWare’s internet usage management software by combining internet monitoring with web filtering. They use BrowseReporter’s internet and application monitoring features to regulate the browsing habits of their employees and they use BrowseControl’s web filter to block access to websites that BrowseReporter has indicated as being commonly abused.
User context is important. What is considered an inappropriate website for one user may be required by another user to perform their work. Blocking social media is great for reducing distractions in the workplace, but if you block your marketing and public relations staff from accessing your organization’s social media accounts they cannot perform that part of their role.
With the wide variety of users connecting to your network, your web filter needs to include granular customizations for your blacklists. With BrowseControl you can configure unique software-enforced policies for each of your devices, departments, and users based on their exact content filtering needs.
If you have dozens, hundreds, or thousands of users to manage, manually installing the software agents for your web filtering solution will be a tedious task. CurrentWare supports advanced deployment methods for BrowseControl and the other solutions in the CurrentWare suite, allowing you to easily perform a remote client install for all of your users from the convenience of a centralized console.
Currentware Products Can Be Deployed in a Variety Of Ways:
Web filtering is an excellent tool for enhancing endpoint security, managing productivity, and preventing users from accessing inappropriate content. If you would like to start using content-control software to manage internet and application use in your organization, reach out to the CurrentWare team today and we will give you a FREE trial of BrowseControl so you can see the power of content filtering first-hand.
If web filtering is part of your cybersecurity plan, you will get the best value by purchasing the entire CurrentWare suite. CurrentWare’s software suite includes solutions for USB device control, advanced computer power management, internet filtering, and computer monitoring.
All of CurrentWare’s solutions operate from a centralized console, making web filtering and device control policy management for all your users a breeze.
Cookie | Duration | Description |
---|---|---|
__cfruid | session | Cloudflare sets this cookie to identify trusted web traffic. |
cookielawinfo-checkbox-advertisement | 1 year | Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category . |
cookielawinfo-checkbox-analytics | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics". |
cookielawinfo-checkbox-functional | 11 months | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional". |
cookielawinfo-checkbox-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary". |
cookielawinfo-checkbox-others | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other. |
cookielawinfo-checkbox-performance | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance". |
JSESSIONID | session | The JSESSIONID cookie is used by New Relic to store a session identifier so that New Relic can monitor session counts for an application. |
LS_CSRF_TOKEN | session | Cloudflare sets this cookie to track users’ activities across multiple websites. It expires once the browser is closed. |
OptanonConsent | 1 year | OneTrust sets this cookie to store details about the site's cookie category and check whether visitors have given or withdrawn consent from the use of each category. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
Cookie | Duration | Description |
---|---|---|
__cf_bm | 30 minutes | This cookie, set by Cloudflare, is used to support Cloudflare Bot Management. |
_zcsr_tmp | session | Zoho sets this cookie for the login function on the website. |
Cookie | Duration | Description |
---|---|---|
_calendly_session | 21 days | Calendly, a Meeting Schedulers, sets this cookie to allow the meeting scheduler to function within the website and to add events into the visitor’s calendar. |
_gaexp | 2 months 11 days 7 hours 3 minutes | Google Analytics installs this cookie to determine a user's inclusion in an experiment and the expiry of experiments a user has been included in. |
Cookie | Duration | Description |
---|---|---|
_ga | 2 years | The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors. |
_ga_GY6RPLBZG0 | 2 years | This cookie is installed by Google Analytics. |
_gcl_au | 3 months | Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services. |
_gid | 1 day | Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously. |
CONSENT | 2 years | YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data. |
Cookie | Duration | Description |
---|---|---|
_opt_expid | past | Set by Google Analytics, this cookie is created when running a redirect experiment. It stores the experiment ID, the variant ID and the referrer to the page that is being redirected. |
IDE | 1 year 24 days | Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile. |
NID | 6 months | NID cookie, set by Google, is used for advertising purposes; to limit the number of times the user sees an ad, to mute unwanted ads, and to measure the effectiveness of ads. |
test_cookie | 15 minutes | The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies. |
VISITOR_INFO1_LIVE | 5 months 27 days | A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface. |
YSC | session | YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages. |
yt-remote-connected-devices | never | YouTube sets this cookie to store the video preferences of the user using embedded YouTube video. |
yt-remote-device-id | never | YouTube sets this cookie to store the video preferences of the user using embedded YouTube video. |
yt.innertube::nextId | never | This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen. |
yt.innertube::requests | never | This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen. |
Cookie | Duration | Description |
---|---|---|
_dc_gtm_UA-6494714-6 | 1 minute | No description |
_gaexp_rc | past | No description available. |
34f6831605 | session | No description |
383aeadb58 | session | No description available. |
663a60c55d | session | No description available. |
6e4b8efee4 | session | No description available. |
c72887300d | session | No description available. |
cookielawinfo-checkbox-tracking | 1 year | No description |
crmcsr | session | No description available. |
currentware-_zldp | 2 years | No description |
currentware-_zldt | 1 day | No description |
et_pb_ab_view_page_26104 | session | No description |
gaclientid | 1 month | No description |
gclid | 1 month | No description |
handl_ip | 1 month | No description available. |
handl_landing_page | 1 month | No description available. |
handl_original_ref | 1 month | No description available. |
handl_ref | 1 month | No description available. |
handl_ref_domain | 1 month | No description |
handl_url | 1 month | No description available. |
handl_url_base | 1 month | No description |
handlID | 1 month | No description |
HandLtestDomainName | session | No description |
HandLtestDomainNameServer | 1 day | No description |
isiframeenabled | 1 day | No description available. |
m | 2 years | No description available. |
nitroCachedPage | session | No description |
organic_source | 1 month | No description |
organic_source_str | 1 month | No description |
traffic_source | 1 month | No description available. |
uesign | 1 month | No description |
user_agent | 1 month | No description available. |
ZCAMPAIGN_CSRF_TOKEN | session | No description available. |
zld685336000000002056state | 5 minutes | No description |