File Encryption with SafeNet ProtectFile
ProtectFile encrypts files and folders, cryptographically enforcing access rights to confidential data
|
|
|
|
IT security traditionally aims to protect against external threats such as data hackers and thieves. However, it is not only external threats that often attempt to discover, intercept and maliciously use confidential information. Recent analysis by industry research organisations (Gartner, IDC, Meta Group) identifies internal staff constitute 80% of the threat to an organisations confidential information, with external threats comprising 20%.
Internally, data security risks have escalated in recent years due to the practice of storing data on network attached devices (file servers, workstations and laptops) and the growing use of high capacity portable media (memory sticks, CDs and DVDs). Similarly, the level of external threats has also increased as the result of outsourced data storage and system administration.
ProtectFile delivers the ultimate resolve to these escalating data security issues; providing asset-centric security by protecting information against threats internal and external to an organisation.
Ultimate Security
|
|
|
Ultimate Usability
ProtectFile integrates seamlessly into the Windows client environment. The encryption process is transparent and runs invisibly in the background. Users encrypt and decrypt all files without any knowledge of the underlying cryptographic process. No right click actions are required, users simply continue to use the common file save and file open command within the application of use.
Ultimate Manageability
The silent mass-deployment function enables simple and automated rollout support with pre-definable security policies allowing both rapid and low-cost deployment in very large and small environments.
A benefit unique to ProtectFile is the ability for user group managers to control the access rights within their user group to encrypted file folders relevant to their area of responsibility. This reduces the management burden on network administrators who only need to manage the Windows access profiles of user group managers in accordance with the organisation’s security policies.
ProtectFile is available in two versions to meet integration requirements into an existing PKI infrastructure, or decentralised access management.
ProtectFile Premium (PKI) – works with X.509 v3 certificates using active directory and PKI infrastructure to manage existing users and certificates.
ProtectFile Business - designed for use in non-PKI environments, uses a Central Management Console for user profile management and creation of user groups, individual users, key recovery and recovery of encrypted files and folders.
Network-based file and folder encryption incorporating authenticated access management
ProtectFile enables the ability to control individual and group permission-based access to encrypted data that is stored on various devices across an organisation.
Supported Platforms
|
|
|
Silent network wide installation
Rapid and low cost deployment in both large and small environments is facilitated by remote silent installation and a scripting interface. Remote installation automatically sets client configurations with pre-definable security policies. A scripting interface facilitates streamlined deployment incorporating automatic mass configuration of encrypted folders, including the addition and removal of secured folders and user access.
Active Directory integration
Seamless integration into Windows Active Directory enables simple user management without the need for administrator training of ProtectFile operations.
PKI interoperability
| ProtectFile Premium will integrate seamlessly with the following PKIs: |
|
|
|
|
Interoperability
ProtectFile will seamlessly integrate and operate with Microsoft Windows Terminal Server, Offline Folder Synchronization, DFS (Distributed File System), Global Catalogue, Citrix Terminal Server and Novell.
Active Directory integration
Seamless integration into Windows Active Directory enables simple user management without the need for administrator training of ProtectFile operations.
Supported Smart Cards and Tokens
| ProtectFile supports virtually all tokens and smart cards with PKCS#11, Microsoft CSP or Vasco Digipass |
|
Transparent data encryption and decryption
No Right Clicks - A right click command, or any other specific ProtectFile command, is not required to initiate encryption or decryption.
All files in a secured folder are encrypted and decrypted automatically and transparently without any additional interaction by the authenticated user. Authenticated users will only be granted decryption access to files that they have the pre-allocated rights to view and use.
Single sign-on
Once the user has been successfully authenticated during the Windows log-in process, ProtectFile is initiated automatically without any additional need for authentication
