Savant's end-point software associates a unique, invisible key with each authorized application (including associated components and identified scripts) on each end system. When applications request use of the Central Processing Unit (CPU), Savant compares the previously known key with the key that is presented. If there is a match, the application is allowed to execute on the system. If there is not a match or the application is unknown, access to the CPU is denied. In a lockdown mode, the unknown application will be quarantined. In a more open environment where users may be granted more flexibility in adding software to their devices, options are presented for handling the unknown application.

System administrators can use their existing installation or imaging procedures to install or update applications on end devices. Savant’s Enterprise Management System (EMS) provides the ability to manage configuration and permissions for any device through a simple web interface. However, unlike all other whitelisting solutions, Savant does not require a central application key store. The keys themselves are stored in an encrypted database on the local system which is accessible only by the Savant software. This eliminates the need to query a central server or reference database, improves system performance, and eliminates a central point of attack.