In today's business environment you share information in form of documents,
images, presentations etc. containing sensitive information within the
organization, as well as with partners, vendors or customers. How do you ensure
that confidentiality of such documents isn't compromised? Though, sharing of
information is inevitable, you lose control over how it could be used. The
recipients can copy, edit, print and forward the information further to other
people; posing a threat to confidentiality of file and the information it
contains. Seclore FileSecure allows users to mitigate this risk by empowering
them with control over the usage of the file even after it has been shared. This
helps to enhance collaboration while reducing risks of data leakages or
information security breaches.
Seclore FileSecure ensures that the enterprises have control over the
documents owned by them, even after they have been distributed. It ensures that
the usage restrictions are applied every time the document is accessed,
regardless of its physical location. With FileSecure you can restrict a user to
perform specific actions like viewing, printing, editing and redistributing the
file further. It supports common file formats such as Microsoft Office 2003,
Office 2007, OpenOffice, PDFs and images. Even design files from CAM/CAD
applications can also be secured with FileSecure. It also blocks the screen
capturing feature, so software like Camtasia or even Print Screen feature can be
disabled from accessing the protected document. The sensitive documents can
reside on laptops, desktops or centrally on file servers. The usage restrictions
on the secured documents are enforced independent of how they are being shared,
i.e. files can be shared by any means like email, CD/DVDs, pen drives, FTP or
messengers like GTalk, MSN, Yahoo etc. Also the usage policies can be remotely
updated and applied without having to re-send the document.
|
How it works
At the heart of the FileSecure application is the policy server that stores
all usage permissions for a file. Every user has to connect to a policy server
to view the protected file. It supports authentication systems like LDAP and
other databases like MySQL, Oracle etc. For single sign-on and authentication it
natively supports Microsoft's Active Directory. Users within an organization can
be authenticated using LDAP or ADS and using the FileSecure Desktop Client on
their systems they can protect documents they have created and also access the
protected documents shared with them. People outside the organization can also
use the FileSecure Desktop client to view the protected documents; all that is
needed is to integrate their authentication with policy server.
How we tested
With the policy server of FileSecure we integrated four users. When a test
user logged into the system, he was authenticated with the policy server through
the Desktop Client of FileSecure and once authenticated the user could set
protection on any document he had created and wanted to share with other users
in the organization. By default each user has viewing rights, but other rights
can be set by the owner. By going to the advanced tab of Permission Details, the
owner can set the dates till this document is valid, or can set the IP range
that this document can be viewed by, or can also set the location lock, i.e. the
PC or laptop where the document is first viewed. It will be accessible there
only and cannot be viewed anywhere else. When the protected document is opened
by any user who isn't authorized, he gets the prompt that it's a protected
document and to view it he needs to have a Desktop Client installed.
Bottomline: Enterprises can plug data leakage and ensure safety of
digital documents, within and outside.