Keeping Your Content Secure Everywhere: Even Outside The ECM Repository

Flash Player 9 (or above) is needed to view presentations.
We have detected that you do not have it on your computer. To install it, go here.

more share options
Embed For WordPress.com

Without related presentations

9 comments

Comments 1 - 9 of 9 previous next Post a comment

+ staltersre 3 years ago
Rights Management Technology Can:

Securely share information with executives and external board members

Protect intellectual property

Prevent unauthorized access to information relating to corporate transactions (purchase orders, partner agreements, etc.)

Share but protect and eventually revoke third-party access to corporate information
+ staltersre 3 years ago
Authors receive a client licensor certificate from the RMS server

An author creates a file and defines a set of rights and rules.

The author can distribute the file in any preferred manner.

The recipient clicks the file to open it.

The application renders the file and enforces the rights defined in the use license.
+ staltersre 3 years ago
One the user who is trying to view the rights protected content is authenticated and treated as a trusted entity, a key is provided from the RMS server that will allow the content to be unencrypted.
+ staltersre 3 years ago
This is an abstract representation of the compound document format in which are stored all the pieces necessary to protect a rights-protected document, and to grant protected access to the content of that document.
+ staltersre 3 years ago
By applying rights management technology, the binary file content is encrypted. When it has been encrypted a user is unable to view the content without being authenticated and the permissions validated.
+ staltersre 3 years ago
If we can secure that sensitive content when it leaves the repository then we can feel a lot better about the security of the organization’s intellectual property.
+ staltersre 3 years ago
Certain content deserves to be secured even when it is out side of the ECM repository. Good examples include patent applications, merger and acquisition documentation, and corporate financial performance reports that have not been finalized. The last example could have compliance implications with SEC regulations if this type of information got in the wrong hands and influenced the markets.

Finance. Merger and acquisition plans, contract bidding plans and proposals, financial performance statistics, insurance claims and loan applications, cost forecasts, budgets, invoices, expense reports, and contracts.

Operations. Quality control statistics, deployment plans and proposals, inventory data, benchmarking studies, production details, purchase orders, shipping reports, and enterprise resource planning (ERP) data.

Sales. Responses to request-for-proposal (RFP) and request-for-information (RFI) documents, contracts, customer information, business plans, sales performance reports.

Human resources. Information about recruiting, payroll and salary, medical records, employee and supplier performance analyses, employees’ personal information, and organizational announcements.

Government. Outgoing RFPs and RFI documents as well as responses from vendors to RFPs and RFIs, staff performance evaluation information, and sensitive information related to public infrastructures.

Legal organizations. Client communications and personal information pertaining to clients, court briefs and opinions, transcripts of hearings and testimony, contracts, and billing records.

Manufacturing. Intellectual property in the form of product recipes or component specifics, proprietary process information, drawings and diagrams, costing information, test results, contracts and transactions with business partners and vendors.

Not-for-profit organizations. Collaborative grant writing documents, grant management reports, financial documents, and member information.

Research and development. Project specifications and product overviews, white papers and official research reports, business development strategies, supplier information, cost-benefit analyses, production status reports, documentation and training manuals.

Marketing and public relations. Brand strategy documents and brand assets, information about pricing and promotions, drafts of brochures and newsletters, presentations, press releases, testimonials, business plans, customer and constituent requirements and feedback.
+ staltersre 3 years ago
But wait! What happens when that rogue employee decides to copy that confidential new product design document onto a thumb drive and take it home? Or, less sinister, what about the VP of Development who has a couple of gigabytes of company confidential documentation on his laptop and that laptop was stolen from his hotel room while having breakfast in San Francisco?
+ staltersre 3 years ago
It was a long road. Getting the budget approved, buy-in from IT and the business. Now all the Enterprise’s content is safe and secure.

Notes on slide 1

2 Favorites & 2 Groups

John Heijmann at John Heijmann, favorited this 4 months ago
Vasan Ramadoss, Project Manager at Benchmark softech, favorited this 2 years ago
Tags security
Alfresco Software, Open Source Enterprise Content Management at Alfresco Software, added this to the group Enterprise Content Management
Ulrich Kampffmeyer, Managing Director added this to the group ECM

Keeping Your Content Secure Everywhere: Even Outside The ECM Repository - Presentation Transcript

Created when Only added to End User Publishing file is protected the file after the Licenses License server licenses a user to open it Rights for a Content Key Encrypted with particular user the server’s Encrypted public key with the user’s Rights Info Content Key public key w/ email addresses (big random number) Encrypted with the server’s a Encrypted public key with the user’s The Content of the File public key Encrypted with (Text, Pictures, metadata, etc) Content Key, a cryptographically secure 128-bit AES symmetric encryption key
Database Server Directory Server Rights Management Server Information Recipient Information Author
5/03/2007

+ staltersre, 3 years ago

Embed custom