Online Armor's Web Shield checks to make sure that when you visit a financial, or other important domain that you are taken to the domain you expect and not a fraudulent one. The Web Shield also allows you to block your computer from making any connections to undesired domains.
The configuration in this section of the Online Armor Control Panel is also used for Banking mode.
Online Armor classifies each domain as one of the following:
- Trusted – Trusted domains are known to be safe and are allowed to be accessed in any mode.
- Blocked – Blocked domains are domains that Online Armor will prevent your computer from connecting to in any mode. These are domains that are dangerous enough that they should not be visited at all.
- Protected – Protected domains are domains such as your banking site, that are known to be safe, but may be the subject of phishing scams. Online Armor uses the DNS checker to protect you from being mis-directed to phishing domains that are made to look like your Protected domains. Protected domains are allowed to be accessed in any mode.
- Not Trusted – This status is reserved for domains associated with Blocked BITS jobs. Not Trusted entries differ from Blocked entries in that the domain remains accessible in your web browser or by other programs; only BITS jobs are Blocked. It is not possible to manually set entries to Not Trusted.
The Web Shield uses DNS Checking to ensure that you are not being redirected to phishing domains that are made to look like your banking domains and capture your login information.
DNS checking is automatically performed on Protected domains; no additional configuration is needed. Online Armor will alert you with a popup if the DNS results do not match those of the trusted third-party DNS server, offering you to chance to Allow or Block the attempt to connect to this domain.
The Background Intelligent Transfer Service (BITS) is a Windows component that uses idle bandwidth to transfer data between computers. Microsoft commonly uses BITS to deliver software updates through services like Windows Update. Other non-Microsoft applications such as Adobe, Java and Google also utilize BITS.
Unfortunately, BITS can also be used for malicious purposes. The Web Shield protects against the malicious use of BITS by alerting you when an Unknown BITS job is detected and offering you the choice to Allow or Block it.
Once you have Allowed or Blocked a BITS job, the applicable domain is added to the Domains list, as either Trusted or Not Trusted, respectively. If you need to reverse your decision, you can change the domain's status in the Domain's list.
You can access the Domains list by opening the Online Armor Control Panel and selecting Domains from the Main Menu on the left. The Domains list will show you any domains that have been added and their status.
The Domains list is organized using a table with the following columns:
- Status – Shows whether the domain is Trusted, Protected, Not Trusted or Blocked.
- Site – Shows the domains address.
Each row is color coded to indicate whether the domain is set to Trusted or Protected (green), Not Trusted (salmon) or Blocked (red).
A legend showing the colors and their corresponding status can be displayed by clicking on the Legend link above the table.
Underneath the list are the following buttons:
- Trust – Changes the selected domains status to Trusted.
- Protect – Changes the selected domains status to Protected.
- Block – Changes the selected domains status to Blocked.
- Add – Allows you to add a new domain to the list.
- Edit – Allows you to modify the domains address and change its status.
- Delete – Removes the domain from the Domains list.
Domains List Context Menu
You can right-click any domains in the Domains list to access the following additional options:
- Right/Left Justify – When the list is left justified, sites are sorted in standard alphabetical order, when they are right justified they are sorted alphabetically according to domain level. For example, in www.citibank.com, the first level domain is com, the second level domain is citibank and the third level domain is www. When the list is right justified, each entry is first sorted alphabetically according to it's first level domain, then by it's second level domain and so on.
- Open – Opens your web browser and takes you to the selected domain.
- Learn – Opens an Online Armor browser window that will add all domains and subdomains encountered. This is used to learn banking domains so that you can use Banking Mode with ease.
- Export – Allows you to export the Domains settings to a settings file, so that you can import them again later if you reinstall Online Armor.
- Import – Allows you to import previously exported settings.
The Options tab contains the following option:
- Ignore Online Armor Domains List – Placing a check in this box configures Online Armor so that it does not use the internal list of known Trusted domains.