Categories
Blog File Server Security Insider threats

The final step of file server security: prevention of copying a file from a file server

Important unstructured data concerning accounting, product development, and marketing are stored in file servers in organizations. Users share the data using shared folders on file servers. File server security is crucial because organizations could lose intellectual property and be damaged in terms of business continuity and reputation if the data is lost or leaked from a file server due to disaster, error, or external attack.

The following should be done to secure file servers: 1) keep file servers in a secure place to prevent theft, 2) separate file servers from the Internet to prevent cyber-attack, 3) encrypt file servers using Bit Locker to prevent data leakage in case of theft or loss, 4) keep Windows file server software updated to maintain up-to-date security patches, 5) install anti-virus software to prevent malware, 6) control access and privileges of users, 7) regularly back up file servers, 8) whitelist applications in a file server to prevent ransomware, and 9) audit the file logs of users.

However, existing file server security solutions have mostly concentrated on preventing attacks from the outside and lack focus on preventing insider threats to file servers.

Theoretically, we can audit files a user copies or transfers outside the server through logs provided by the Windows file server; however, in reality, if the options are set to create logs, tons of logs can be created. Accordingly, it is very hard to figure out which log is useful, and log data management can be another bothersome job, which is why many expensive third-party file server audit software applications for sorting, managing, and monitoring logs are needed.

We can manage users’ permission as ‘read only,’ ‘write,’ ‘modify,’ etc. However, we cannot prevent a user from copying a file to the outside, even by assigning the ‘read only’ permission to a user. As a user’s permission provided by Windows, ‘read only,’ only makes it impossible to modify the original file with the same file name. If we rename it, we can modify and copy it as well. However, when it comes to file servers, as an important collaborative workspace in organizations, more features relating to insider threat prevention are needed for more than permission management. It should be possible to prevent users from copying, printing, screen-capturing, and network-transferring files, even when they can edit the files.

Secudrive File Server prevents users from copying, printing, screen-capturing, and network-transferring a file in a shared folder of a file server, even when users can edit the file. Moreover, it makes it possible to filter and sort when and where a user can create, modify, copy, transfer, and delete a file, making it very useful for auditing as well as real-time monitoring. Secudrive File Server can keep file servers secure as a collaborative workspace from insider threats and can be considered the final step in file server security.

Categories
Blog NEWS Press Release USB Copy Protection

Secudrive USB Copy Protection 3.1, an advanced USB copy protection solution for enterprises, released.

SAN JOSE, Calif., Apr. 4, 2017 – Brainzsquare announced its release of Secudrive USB Copy Protection 3.1, an advanced USB copy protection solution for enterprises.

Secudrive USB Copy Protection 3.1 focuses on securely distributing and sharing sensitive data relating to marketing, product development, and finance via a USB flash drive while preventing unauthorized copying.

Secudrive USB Copy Protection 3.1 is compatible with content that runs on MS Office, CAD, and custom applications, as well as multimedia and PDF-type documents supported by existing USB copy protection solutions. All functions of the applications are available while preventing unauthorized copying, printing, screen capturing, and network transferring. For example, a user can rotate a 3-dimensional drawing in AutoCAD, move to another sheet, and refer to a function cell in MS Excel, view an animation in MS Presentation, or read hidden comments in MS Word.

Secudrive USB Copy Protection 3.1 also works with complicated content consisting of multiple files. For example, an execution file refers to a database and requires multiple files to run. With Secudrive USB Copy Protection 3.1, the files can be distributed as a set while copy protection features are maintained.

Moreover, content can be updated after distribution. When a user plugs a USB flash drive into a PC, a built-in program automatically checks if anything needs to be added or changed and then updates content accordingly. The remote update feature can significantly reduce enterprises’ shipping costs for re-delivery of physical devices with new content.

Finally, the manager software can be installed on multiple PCs to enable mass production for situations where customers distribute content to thousands of branches or partners. Each PC with the manager software and the USB hubs can simultaneously produce up to 22 distributed USB flash drives without any USB duplicator.

“Customers can distribute the original files with Secudrive USB Copy Protection 3.1 while modifying the original file formats to PDF-types with existing solutions. When you distribute an MS Excel file or an AutoCAD 3-dimensional file, you can easily understand the distinction between the two if you compare what you use the original with what you only view PDF-style still image file. Secudrive USB Copy Protection 3.1 could be the most effective and secure solution for enterprises to distribute and share complicated and sensitive data,” said Simon Kang, CEO of Brainzsquare.