Randtronics

Encryption of Government Data

Patented next generation government data encryption

Government departments are usually required to implement security based on guidelines consistent with National Institute of Standards and Technology (NIST). NIST guidelines include implementing laptop encryption and access control.

NIST Special Publication (SP) 800-53 Security and Privacy Controls for Federal Information System and Organizations

It is very common that departments rely on full disk encryption for data protection. However, it only protects at a physical level. For example, if the hard drive is removed, the data remains inaccessible. However, if the hard disk is powered on and a password is entered, there is no protection from unauthorized users or system administrators. Full disk encryption is not useful at all for protection of servers as they are always powered on and shared between users.

The better approach is to protect data at a folder level. In this case specific folders are encrypted with different keys. Only authorized users and applications can access the target folders and decrypt files. Randtronics DPM easyCipher can provide transparent file/folder encryption with access control for protection of sensitive data on laptops and servers. Multi-level policies can be created for different access levels for users and applications. Different users can share files on a server without exposing data to other unauthorized users. All file access events are Users and groups can be synchronized with Active Directory for automated policy updates. DPM easyCipher also provides full auditing on all file access events on protected files.

With Randtronics DPM easyCipher you get 3 solutions in one: File encryption, Access Control and Access Audit.

See this whitepaper for more information