1
DRM One for SharePoint
January 2010
Bill BlakePresident & COO, eDocument Sciences, LLC
2
I. Backgrounds
II. Introduction
III. Key Functions
IV. Benefits
V. System Requirements
I. Backgrounds
II. Introduction
III. Key Functions
IV. Benefits
V. System Requirements
3
Backgrounds
Changes in Enterprise Environment
Docs are easier to copy,
manipulate, reproduce and
distribute.
Info-management
difficulties and inefficiency
due to the scattered value
data
Increased threat of
information leakage
Working EnvironmentInformation
Sharing Domain
EmploymentStatus
Analog (paper docs)
Workstations
Content Management SystemsDigitization(digital docs)
Permanent Full-time
Temporary Part-time
Outsourcing
4
Background
Efficient Information Management
& Persistent Information Control
Driving factors & diversified requirements on information security
Changes in information sharing patterns
Increased leaks, increased risk
• Digitalization led to the widespread of digital document-based work environment
• Information systems are rapidly deployed in a wide range of industries
• Docs are recognized as intellectual properties in enterprises
• Corporate document management is challenged
Increased value of corporate info
• Loss of data could lead to a serious threat to business
• 65% of data loss is from SMBs
Rigorous watch on corporate info.
• Security officers fight with the constant threats of attacks from inside and outside
• 85% corporate data loss is committed by insiders
5
Introduction
An innovative DRM solution which is seamlessly integrated with Microsoft Office SharePoint Server 2007 (MOSS 2007)
Provides effective and persistent protection of any digital contents that can be found on enterprise environment, such as Microsoft Office documents, PDFs, image files and more
Enables organizations to utilize safe information sharing throughout the entire document lifecycle
Fully supports other applications developed on Microsoft Office SharePoint Server platform
A glance on DRM ONE for SharePoint
6
MOSS Permissions IRM Permissions DRM ONE for SharePoint Permissions
Home Members “Admin” “View” “Edit” “Unpackage”
User actions are restricted far more under the DRM ONE for SharePoint environment as it enforces more constrictions with the “Print” and “Screen Capture” Permissions, which are not provided or provided as a simple restriction under IRM environment.
Hierarchy Managers “Admin” “View” “Edit” “Unpackage”
Home Owners “View” “Edit” “Save” “Extract” “View” “Edit”
Home Visitors “View” “Edit” “Save” “Extract” “View” “Edit”
Designers “View” “Edit” “Save” “Extract” “View” “Edit”
Style Resource Readers “View” “View”
Restricted Readers “View” “View”
Viewers “View” “View”
MOSS permissions are mapped with the permissions of MS IRM & DRM ONE for SharePoint
Introduction
* The ‘Unpackage’ action converts a secured document into a normal document.
** Permissions in the same color are analogous with each other in their functionality.
7
General Functions IRM DRM ONE for SharePoint Description
Supported Applicationsand document formats
• MS Office 2003 or above
• MS Office 97 or above• Acrobat PDF 4 or above• AutoCAD 2000 or above• Adobe Photoshop 6 or above• Adobe Illustrator 10 or above• MS Wordpad• MS Paint
• IRM runs only on Windows 2007 Server and supports only the MS Office applications.
Detects fraud DRM document us-age by manipulating PC time
X O• When specifying valid periods of a DRM
document, DRM must detect the manipula-tion.
Automatic Packaging upon every PDF conversion
X O
• DRM must detect and prohibit the PDF con-version processes, as the process creates and uses image files of the applicable doc-ument.
Inactivates the menus when the functions are prohibited
O O
Distinguishable file icon of DRM document
X O• DRM documents of DRM ONE for Share-
Point are easily distinguishable with a lock icon.
Blocks PrintScreen key funtions O O
• DRM ONE for SharePoints prevents screen-capturing attempts by any possible capturing methods
Blocks all capturing tools X O
Blocks document accesses from remote controllers
X O
Blocks document accesses from virtual machines
X O
DRM functionality of MS IRM vs. DRM ONE for SharePoint
8
System Architecture
Introduction
Permission MappingModule
Permission MappingModule
DRM ServerDRM Server
Permission checking &
doc. Usage, license issuing
Normal docs are directly uploaded to MOSS
LibraryLibrary
Uploading DRM docsDRM docs are
unpackaged thru DRM Packager and then
uploaded as normal docs
DRM PackagerDRM Packager
DRM Client DRM ClientDocument usage logs
Downloading Normal docs Normal docs are packaged thru DRM Packager, and then saved in the user PC as DRM docs
9
Document Lifecycle
Document Security Domain
Retention UsedDistributedCreated
PC Printer
Discarded
Security coverage of DRM ONE for SharePoint
Introduction
The zone where information leaks
10
Key Functions
Quick and Easy DRM activation and Permission settings
1 2 3
An administrator logs on to MOSS and activates DRM on a document library.
The administrator grants DRM Permissions to the library users.
The administrator logs on to DRM ONE for SharePoint Console, and grants additional DRM Permissions.
• Administrator can activate DRM on a MOSS library by a click.• DRM Permission settings require only a few clicks.• Administrator can set additional DRM Permissions on DRM ONE for SharePoint Console.
- Additional DRM Permissions are mapped to the DRM Permissions granted by MOSS.
11
Features & Functions
Usage log and audit record management
Usage Logs
Provides all usage logs of DRM documents. Administrators can search the logs by specifying search conditions and/or entering keywords. The search results can be exported as an Excel file.
Audit Records
Provides all audit records which contains information on changes in DRM configuration and/or service management. Administrators can search the records with the search option. The search results can be exported as an Excel file.
• On DRM ONE for SharePoint Console, administrators can search and view each and every document usage logs and audit records with usage log search option, and also export the search results as an Excel file.
12
Easy-to-use service management options
• DRM ONE for SharePoint Console provides convenient options to updates service components; product license and DRM Client software installation file.
Features & Functions
DRM Client Software Update
Fasoo.com may distribute the updated DRM Client software for product enhancement. Administrators can update the existing DRM Client software with the new one so that users can install and use the updated software.
Product License File Update
Product license file needs to be updated for increased users or Server system upgrades. Administrators can update the existing license file with the new file by a few simple clicks.
13
DRM Client
• Prohibits user from opening the DRM documents when:
- The DRM Client software is not installed on the user PC
- The user has no Permission to the DRM documents (an alert message appears)
- The user is not authenticated (a logon dialog appears)
Control user actions – opening DRM documents
Features & Functions
User attempts to open a DRM document
1
If the user is not logged on, a logon message box pops up
2
DRM Server checks the user’s Permissions
DRM Server
i
If the user has authenticated and verified the Permission that are granted to the user, the DRM document is opened
If not, the DRM document cannot be opened. An alert message is prompted
3
14
Features & Functions
Control user actions – using DRM documents
A user opens a DRM document and attempts to do followings.
Attempting to print the DRM document
Attempting to edit the DRM document content
Attempting to capture the screen image of the DRM document
When the user has the applicable Permission, the attempted action is allowed.
If not, the attempted action cannot be allowed, and an alert message appears.
• Restricts the user’s attempts when the user does not have the applicable Permission.
- If the user has no “Print” Permission, the user cannot print the DRM document.
- If the user has no “Edit” Permission, the user cannot use any of the edit functions.
- If the user has no “Screen Capture” Permission, the user cannot capture the screen of the DRM document.
15
Benefits
Safeguard sensitive information such as intellectual property, financial
data, project development, etc. from both insiders and outsiders
Eliminate unauthorized use even after the delivery
Maintain constant control of sensitive information throughout the full
lifecycle
Prevent or discourage unnecessary and costly lawsuits caused by fatal
data loss or theft
Safeguard sensitive information such as intellectual property, financial
data, project development, etc. from both insiders and outsiders
Eliminate unauthorized use even after the delivery
Maintain constant control of sensitive information throughout the full
lifecycle
Prevent or discourage unnecessary and costly lawsuits caused by fatal
data loss or theft
With DRM ONE for SharePoint, you can…
16
• HW - CPU: Pentium IV 1GHz or higher - Memory: more than 256MB
• OS - Windows 2000 Professional - Windows XP Home, Professional - Windows Vista (32 bit)
• Browser - Microsoft IE 6.0 (SP1 or higher), 7.0
DRM ONE for SharePoint System Requirements
DRM Server Requirements DRM Client Requirements
System Requirements
• Server with processor speed of 2.5 GHz or higher; dual processor of 3 GHz or higher recommended.
• Requires Windows Server® 2003 Standard/Enterprise/Datacenter /Web Edition (Service Pack 2 or higher) as operating systems.
• RAM - Standalone deployment requires 2 GB RAM; 4 GB recommended. - Farm deployment requires 2 GB RAM for Front-end Web Servers; 4 GB recommended for SQL and Application Servers.
• Hard Disk - NTFS formatted partition with at least 3 GB of free space; more than 3 GB free space is recommended for Website operation.
• Microsoft .Net Framework 3.0 that supports ASP.Net 2.0
• Windows® SharePoint® Services 3.0
• Microsoft Windows Workflow Foundation runtime components
• SQL Server 2000 SP3a or higher or SQL 2005 SP2 or later is required. SQL 2005 Analysis Services SP1 or later is required for some advanced features.
17
Analyst Quote on DRM ONE for SharePoint
“The Gilbane study shows the fast-growing demand for integration of
scalable ERM capabilities with Microsoft SharePoint, which mirrors
SharePoint’s growing popularity as a content management platform,”
said Bill Rosenblatt, study director and Senior Gilbane Group
Analyst. “Fasoo.com’s integration with SharePoint Server 2007, among
other content management systems, is indicative of the company’s
foresight in providing ERM solutions that anticipate market demand,
which has led to Fasoo.com’s very large installed base worldwide.”
“Enterprise Rights Management” -Business Imperatives and Implementation Readiness / Gilbane Group / Aug. 2008
18
Thank you
Fasoo.com – Building Secure Information Solution
Questions?
Thank you!
Top Related