Architecture

Secure Islands IQProtector architecture is designed for small, medium and large enterprise deployments. Its unique data-centric architecture allows IQP to classify and protect data regardless of its quantity or volume. This capability makes IQP flexible to support various organizational topologies and environments. IQP's technology also allows gradual deployment of agents in an organization while effectively securing data even on hosts that don't have any agents deployed.

Secure Islands IQProtector is based on agents to server architecture, whereas agents are deployed at various hosts such as desktops, laptops, or optional servers. The following diagram represents the basic architecture of the solution:  

The agent is an autonomous component which doesn’t need to be connected to the management server or any other component in the network, in order to operate. All operations including logging, classification and protection are made autonomously. Thus, can work both offline or outside the enterprise.  

When connected to the network, the agents retrieve new updated policy (if exists) and send audit trails to the IQP management server.

The management server is responsible for defining, managing and distributing policies. In addition, it also collects logs and audit trails from the agents for monitoring and forensics purposes. 

The management server is based on classical architecture of application server and commercial RDBMS (MS SQL Server). This architecture permits easy scale up through addition of servers. The management server is built as a stateless server therefore simplifies the deployment and load.

IQP protection is made through popular encryption and E-DRM systems such as Microsoft AD RMS with proven deployments of millions of installations around the world. By using this model the organization can be confident that their most valuable data is secured by the most notable and proven technologies.