Compartmentalization and Separation of Duties

THE CHALLENGE

Compartmentalization - determining exactly who can do what with a given data set – is a crucial part of data security. However, existing tools enable compartmentalization policies to be easily bypassed. For example, super-users like IT administrators have elevated system privileges, and may be able to access to sensitive documents in file shares. Similarly, in the financial arena, without an effective “Chinese wall” between corporate advisory and brokering, distribution of sensitive data via multiple channels is possible – exposing the company to regulatory sanctions and litigation. Finally, even when access to a given data item is limited, an individual with legitimate access can often – either maliciously or unintentionally – send the item to unauthorized users, who can view, use or further disseminate the item.

THE SECURE ISLANDS SOLUTION

Solutions from Secure Islands enable the effective creation of a compartmentalization security policy - offering constantly-updated, infrastructure-agnostic, usage-based compartmentalization. Secure Islands leverages E-DRM solutions such as AD-RMS to create and enforce enterprise-wide entitlements – resulting in immediate and effective compartmentalization.

  • Entitlements enforced transparently and automatically.
  • Supports separation of duties on any piece of data among privileged and business users.
  • Constantly-monitored, centrally-governed compartmentalization of information.
  • Enables complete visibility over sensitive data usage.

2011 Secure Islands Technologies Ltd. | All rights reserved |