Loading…

Flash Player 9 (or above) is needed to view presentations.
We have detected that you do not have it on your computer. To install it, go here.

Like this presentation? Why not share!

Classificação da Informação

on

  • 1,347 views

Classificação da informação não estruturada com Oracle Information Rights Management

Classificação da informação não estruturada com Oracle Information Rights Management

Statistics

Views

Total Views
1,347
Views on SlideShare
1,347
Embed Views
0

Actions

Likes
0
Downloads
15
Comments
0

0 Embeds 0

No embeds

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • This slide shows a summary of contexts, users, roles and documents. There are 2 contexts each containing the default roles, rights have been assigned in each context to users and a group, and some documents sealed to the contexts.
  • Oracle provides a solution to this exact problem. Oracle Information Rights Management allows end users and enterprise applications to seal documents and emails. Sealing files not only encrypts them, it digitally signs them, and also links them back to the organization’s Oracle IRM Server. Because of this link to the central server, access to the files can be centrally managed even after those files have been distributed; including outside the firewall. When a user attempts to open a sealed file, their PC connects to the server and retrieves their access rights; they will then be able to open that file subject to their rights. Some users may have read-only access, whilst others may have full edit access. Different users can have different rights to the same file, and indeed any copy of that file, regardless of where it resides. Because the rights are managed centrally on the server, users’ rights can be changed or even revoked. So if a user leaves the organization, when they are removed from the corporate directory, they will automatically have their access revoked to all their sealed documents. All of that sensitive information that they may have backed up on removable media will be completely inaccessible. In addition to this control of access, the IRM server audits all document access, both online and offline. So for the first time you are able to secure and track your sensitive information beyond the database, enterprise applications and even the firewall.
  • To recap… Web services can be revealed to the internet, although they are more likely to be used solely within the corporate network. The IRM Web Services expose sealed content processing operations and rights management operations.

Classificação da Informação Classificação da Informação Presentation Transcript

      • Classificação da Informação
      • [email_address]
      • MCSO 1.086/10
  • Pesquisa Fonte: TCU - AC 000.390/2010-0
  • CobiT 4.1 ISO 27002
      • PO 2.3: Data Classification Scheme
      • PO 4.8: Data and System Ownership
      • DS 5.8: Data Classification
      • 7.2.1: Classification Guidelines
      • 10.7.1: Management of Removable Data
      • 10.8.1: Information Exchange Policies
      • 10.8.2: Exchange Agreements
      • 11.1.1: Access Control Policy
    Classificação da Informação Normas e Frameworks Art. 5º Os dados ou informações sigilosos serão classificados em ultra-secretos, secretos, confidenciais e reservados, em razão do seu teor ou dos seus elementos intrínsecos. Decreto 4.553
    • Estabelecer na política de segurança da informação normas e procedimentos para auxiliar a classificação da informação:
      • Propriedade
      • Classes
      • Controles de Acesso
      • Reclassificação
      • Retenção
    Classificação da Informação Fatores Críticos de Sucesso
      • Classificação da Informação Controle de Documentos Baseado em Rótulos
    PDF Contexto: CC:DITEL:Confidencial Documentos Emails Planilhas Documentos Contexto: CC:DIRTI:Reservado Documentos Documentos PDF Planilhas Emails Assessor Chefe de Gabinete Papéis Contribuidor Papéis Contribuidor Revisor Revisor Leitor Leitor Leitor(no print) Leitor (no print) Assessor Especial
  • Gestão de Documentos Email Sistema de Arquivos Portal Corporativo Servidor de Autenticação e Autorização Compatilhado Casa Civil
      • Classificação da Informação Controle de Documentos Além da Rede Interna
    Gabinete de Segurança Institucional Secretaria de Assuntos Estratégicos
      • Classificação da Informação Arquitetura do Oracle IRM
    Servidores IRM DMZ Internet Intranet F I R E W A L L Base de Dados Balanceador Usuário Externo Web Services Diretório LDAP Usuário Interno F I R E W A L L F I R E W A L L
  •