SharePoint Security Dr. Bruno Quint - Open Source Security Solutions
Why Encryption of Documents? Market Requirements Sensitive information has to get secured against loss, theft, or unauthorised disclosure. Encryption is the most secure solution Existing encryption solutions are not designed for enterprises Performance, High Availability, Client-Less Companies to exchange and work with encrypted documents easily The NSA afffair shows the need secure encryption methods
Why Encryption in SharePoint? Market Requirements SharePoint is a powerfull tool for collaboration and document management SharePoint need security solutions proofed by the NSA affair ** A SharePoint Administrator should never get access to sensitive content Sensitive documents stored in SharePoint need encryption High demand to search information in Gigabytes of encrypted documents **Edward Snowden was SharePoint administrator of NSA Hawai
The Challenge Mobile Collaboration Market Requirements Mobile workers need access to company resources Especially access to email and documents Companies are faced with the challenge by the exploding Bring Your Own Device (BYOD) trend ios, Android, BlackBerry, Windows Mobile collaboration especially with SharePoint is highly attactive but needs secure access to sensitive content
Solution Document Encryption Gateway V3 Transparent Encryption of documents Cloud ready and on premise A server based Gateway solution provide high performance and availbility for: Datacenter Cloudstorage SharePoint Strong encryption methods provide highest security for sensitive documents A document centric encryption without clients allows easy exchange Open standards provide certified security with no backdoors
Solution SharePoint Encryption Gateway V2 Transparent encryption of documents in SharePoint Priviledged persons like administrators will never get access to sensitive information Scalable server based solution for high performance requirements Azure On premise USP : Full text search in encrypted documents
Solution Secure Collaboration Gateway V1 Strong encryption of emails and documents SharePoint Exchange Open Standard encryption with Web Cryptography API from W3C consortium Standard browser as a sandbox system on all smartphones and tablets No sensitive content on mobile device
SharePoint Security Portfolio Encryption for SharePoint HTML5 Encryption DocEnc DocEnc Key RollOut SOA SOA SOA SOA secrt secrt secrt secrt Open Source Security Platform Document Encryption Gateway Encryption for SharePoint Gateway seccollaboration Gateway (The Basis for all Products) (Server Based Encryption for SharePoint and other) (Full Text Search in Encrypted Documents) (Encrypted Browser Access for Mobile User)
Mobile Browser Mail Secure Collaboration Gateway Doc Browser Encryption Search Doc Gateway Gateway Encrypted Doc Cloud Dropbox Exchange Gateway
Document Encryption for SharePoint and more A pure server based solutions for datacenters
Transparent Document Encryption User works with documents Encryption of sensitive documents Document Encryption Gateway Encrypted Documents SharePoint Dropbox SkyDrive Transparent Encryption No Client necessary Fileshare Different Targets supported
The Encryption Gateway Is Designed: To run in: Datacenter High Security together with: High Performance Cloudstorage High Availability SharePoint Farms No Clients
This is a real document encryption! Open Standard SwA from W3C Exchangable encr ypted documents Self contained access rights in meta information Strong hybrid encryption Role based Document Signature Tagging and Labeling of documents DRM support It is more than File & Folder Encryption? Document Encryption Gateway Firecallsupport
Document Centric Encryption Meta Information: Document Encryption: Who has access to this document? Which Keys? etc Role based AES256 RSA1024-4096 Encrypted Document AES RSA 3 Role 3 AES RSA 2 Role 2 adlfkjs3ölsdwöfj03fn3ßr983450oiwu03 AES RSA 1 Role 1 4fuoig94jw4ufhwpeuth04tw9hjwqp4ituh 0z93pt9hjq3tadlfkjs3ölsdwöfj03fn3ßr9 83450oiwu034fuoig94jw4ufhwpeuth04t w9hjwqp4ituh0z93pt9hjq3twqp4ituh0z9 3pt9hjq3tadlfkjs3ölsdwöfj03fn3ßr9834 50oiwu034fuoig94jw4ufhwpeuth04tw9h jwqp4ituh0z93pt9hjq3tadlfkjs3ölsadlfkj s3ölsdwöfj03fn3ßr983450oiwu034fuoig 94jw4ufhwpeuth04tw9hjwqp4ituh0z93p t9hjq3tadlfkjs3ölsdwöfj03fn3ßr983450 oiwu034fuoig94jw4ufhwpeuth04tw9hjw qp4ituh0z93pt9hjq3twqp4ituh0z93pt9h jq3tdwöfj03fn3ßr983450oiwu034fuoig9 4jw4ufhwpeuth04tw9hjwqituh0z93pt9hj q3twqp4ituh0z93pt9hjq3t
Transparent Document Encryption User works with documents Encryption of sensitive documents Document Encryption Gateway Encrypted Documents SharePoint Dropbox SkyDrive Transparent Encryption No Client necessary Fileshare Different Targets supported
Transparent SharePoint Encryption Full text search in encrypted documents SharePoint 2013 Enterprise
Transparent SharePoint Encryption User Normal Mode Secure Mode Normal SharePoint Mode Encryption Gateway Encryption for SharePoint Secure Mode
Encrypted Documents in SharePoint Where is the challenge? Full text search in encrypted documents Administrator should never get access to content
Full Text Search in Encrypted Documents User works with documents as usual Standard Mode Secure Mode Search For not-authorized users only in not encrypted documents SharePoint Encryption Gateway Transparent Encryption Secure Search for authorized users in encrypted documents
Working in SharePoint no learning effort File name can be encrypted
Working in SharePoint Secure Mode Design is configurable Encrypted file names get transparently decrypted
Working in SharePoint Secure Mode New context menu for secure download File is transparently decrypted
Working in SharePoint Secure Mode Transparent search in encrypted files Toolbar for secure search
Working in SharePoint Secure Mode Secure Search in encrypted documents Configure where to search
Working in SharePoint Secure Mode Result Secure Search Original Microsoft Search!!
Secure Mobile Collaboration Device independent security solution for confidential mail and documents
Secure Mobile Collaboration HowtoaccessSharePoint securely? With a X.509 certificate authentication! e-mail docs
Overview HTML5 Encryption HTML5 Encryption Key Store SecCollaboration Gateway HTML5 Rendering HTML5 Browser HTML5 Rendering e-mail docs
Secure Collaboration - email OWA Office Web App
Secure Collaboration with OWA Key Store HTML5 Encrypted HTML5 e-mail docs HTML5 Enc HTML5 Encryption Secure Collaboration Gateway HTML5 Browser with WCA support HTML5 OWA e-mail docs
Secure Collaboration Browser is a sandbox Device Independent Standard HTML5 Browser Web Cryptography API Standard required IE11, Firefox Other browser in beta versions available No sensitive content stored on mobile devices Browser cache encrypted OWA Support
Secure Collaboration - Documents Encrypted documents on smartphones
Secure Collaboration with Encrypted Documents HTML5 Encryption Key Store HTML5 HTML5 Encrypted docs HTML5 Enc Secure Collaboration Gateway HTML5 Rendering HTML5 Browser with WCA support Doc SharePoint Encryption Gateway Doc Enc e-mail docs
Secure Collaboration Browser is a sandbox Device Independent Standard HTML5 Browser Web Cryptography API Standard required IE11, Firefox Other browser in beta versions available No sensitive content stored on mobile devices Browser cache encrypted OWA Support
Summary provides a comprehensive product family around SharePoint security Document Encryption for SharePoint Sever based solution Exchangeable encrypted documents Various SharePoint versions Transparent SharePoint Encryption Full text search in encrypted documents SharePoint 2013 Secure Collaboration HTML5 encryption for mobile devices Device independent security solution Works with SharePoint and Exchange
Dr. Bruno Quint GmbH Dolivostr. 9 64293 Darmstadt Tel: 06151 27990 10