Information Security Capability
Within an organisation, reliable access to information is required to accommodate different users, each with their own information requirements according to their role and responsibility. At the same time, access to information needs to be controlled and restricted, based on user profiles. Whether you are a commercial, government or law enforcement organisation, security of, and control of access rights to, information is mission critical.
You need an information security capability which:
- Manages and mitigates risk
- Adapts to different users with different information access rights
- Is robust and easy to set up
- Has enterprise ready security levels
The Memex information security capability provides a full response to all of the above points. A robust supervisory and security model, it allows organisations to easily set required security and access levels, and participate in multi-organisational operations against common threats.
Three key benefits are:
- Embeds security restrictions in data itself – information may be partially presented to a user i.e. they can see results but sections have been removed. They may also, if desired, be able to search and find information but not view it. A secondary action can be taken where a user was not shown information simply due to security, and if that may have influenced their decision, another user can be notified
- Reduced data storage requirements – This speeds up searching and avoids expensive data storage space. The Memex system actively shrinks data though conversion to a total-content-index
- Various security levels – Security can operate at various levels, from and including user security within groups applied to the application and to the individual servers, then onto database levels, to data access applied to individual records, including covert and protected levels of record security
Memex key security capability features:
Standards |
Industry Standard SSL end-to-end network encryption and host verification to prevent spoofing. Support for Single-Sign-On and Identity Management. |
|---|---|
Passwords |
Flexible and configurable password application policy with expiry and strength characteristics. |
Visibility model |
Multiple visibility models offering read-write, read-only, discover-only and 'notify-only' access to records to any set of system configurable security groups. In discover only mode users see only the presence of data, in notify-only users are unaware of matching data but configurable owners are notified they were attempting to access it. |
Role-based functionality |
Restrictions by user role and group on all application functions and on some system dissemination mechanisms such as Print, Save and Copy/Paste. |
Location-based security |
Restrictions on permission and access based on the accessing workstation’s location. |
Security levels |
Wide variety of group and level-based security models supported Support for protected and covert data security |
Auditing |
Detailed auditing and record versioning |
Communications |
Encrypted communications |
