Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Challenges of Secure Knowledge Management September 23, 2004 Margaret E. Grayson, President & CEO V-ONE Corporation www.v-one.com.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "The Challenges of Secure Knowledge Management September 23, 2004 Margaret E. Grayson, President & CEO V-ONE Corporation www.v-one.com."— Presentation transcript:

1 The Challenges of Secure Knowledge Management September 23, 2004 Margaret E. Grayson, President & CEO V-ONE Corporation www.v-one.com

2  Trust  Mobility  Privacy  Governance Challenges The Human Factor is Critical

3 Developing a Secure “Trust” Model

4 Basic Security Requirements Identity Access Control Mutual Authentication Data Encryption Non-repudiation

5 Establishing Cyber-Trust Internal Hosts / Systems DHS SmartGate VPN Server Authorized Users Secure Connection 100% control End-to-End Security: Encryption - AES or Triple DES, NIST FIPS Certified Strong Authentication - Two Factor, Mutual, NIST FIPS Certified Access Control - Fully Integrated, Central or Distributed Management Audit Logging - Logs all user activity Firewall Trusted Environment Single Port Proxy (443) - Windows 2000, 2003, NT - Sun Solaris - Linux RedHat On User Side: SmartPass

6 Knowledge Management for a Mobile Workforce

7 Remote Field Personnel Forward to destination Application (Trusted Environment) Unpackage Decrypt (payload) Validate Receive packet Transmit packet VPN Client Encrypt Package Addressing information for VPN server Addressing information for destination (obtained from decrypted payload) Payload TCP header IP header Data Communication Info VPN Server Smart VPN client Scientific Data Collection For Tom Brown Inc. Secure End-to-End Connectivity

8 ORI’s Motor Carrier HAZMAT System Communication Center Server Alert message with vehicle ID, location, and crash information Gypsum Express Truck with Qualcomm System and ACN Device 2. View Crash and HAZMAT Details on Secure Web Pages Fleet Manager Database Waybill File Town Dispatch Center 1. Alert Notification via Pager National Message Center So that first responders are NOT the “first victims”

9 Real-Time Information Flow for Bomb Squads Accredited Bomb Squad Personnel VPN Server CoBRA (Chemical Biological Response Aid) Smart VPN client Wireless LAN Public or Private, IP Networks (LANs, WANs, Internet, etc.) FBI LEO (Law Enforcement Online) Access to Critical Information: Effects Protective Gear Response Measures Defusing an Explosive Closest Safe Detonation Site Decontamination Procedures

10 Privacy Challenges

11 Protecting Privacy is Fundamental Information privacy is a basic right Government privacy regulations must be observed Security technology can help to enable privacy protections that allow only authorized users to access specific data –Extend protected information access –Maintain system control by unique data owners –Provide ability to securely add new users on demand –Control risk of inappropriate access Security technology is necessary to maximize information value Security technology is necessary to maximize information value

12 Law Enforcement… Secure Information Sharing Secured by V-ONE SmartGate® Source: Derived from SBU Briefing File, Department of Justice, M. Miles Matthews

13 HIPAA… Information Access Control SmartGate Encryption Server Mcp.hospital.com Agencies.mtf.hospital.com Group A - Healthcare Provider(s) Group B - Physicians/Portals Group C - Outsourced Service Provider(s) Centralized Authentication Pharmacy Patient Records Billing Database Email Extranet Web Corporate Ensure data is put in the hands of those who should appropriately act on the information

14 Governance Issues

15 Governance Responsibilities Your policy and technology choices must work together in practice! Security policy for knowledge management ‒Focus on process ‒Serve the business goals Security “ROI” metrics ‒FUD (Fear, Uncertainty, Doubt) ‒Risk management and business continuity ‒Productivity - supply chain, mobility, cost savings Oversight responsibilities elevated to the boardroom ‒Sarbanes-Oxley ‒Cyberspace citizens

16 Secure Knowledge Management Best Practices

17 Best Practices Four important questions to ask when implementing secure knowledge management… 1. How secure is secure enough? Establishing cyber-trust is critical Sensitive information requires strong security 2. Is security available “on-demand”? Choose self-provisioning solutions that support wide variety of user and operational environments, including mobile ones 3. Will the security features be used? End-user transparency Centralized policy management 4. Can I leverage my IT investment? Gain advantages from agnostic solutions Implement technology to support your business objectives

18 www.v-one.com V-ONE Corporation 20300 Century Blvd. Suite 200 Germantown, MD 20874 1-800-495-VONE V-ONE, SmartGate, SmartGuard, SmartWall, SmartPass, and Security for a Connected World are registered trademarks or trademarks of V-ONE Corporation. Other company or product names mentioned in this documents are registered trademarks or trademarks of their respective companies. Thank You “Security for a Connected World”

Download ppt "The Challenges of Secure Knowledge Management September 23, 2004 Margaret E. Grayson, President & CEO V-ONE Corporation www.v-one.com."

Similar presentations

Software Bundle ViPNet Secure Remote Access Arrangement using ViPNet Mobile © Infotecs.

Software Bundle ViPNet Secure Remote Access Arrangement using ViPNet Mobile © Infotecs.
Powerful and convenient management for Windows Mobile ® 6.1 devices in an enterprise environment. These features include: Centralized, over-the-air device.

Powerful and convenient management for Windows Mobile ® 6.1 devices in an enterprise environment. These features include: Centralized, over-the-air device.
Enabling Secure Internet Access with ISA Server

Enabling Secure Internet Access with ISA Server
RASPro is a secure high performance remote application delivery platform through a perfect combination of application hosting and application streaming.

RASPro is a secure high performance remote application delivery platform through a perfect combination of application hosting and application streaming.
Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.

Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.
Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.

Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.
Computer networks Fundamentals of Information Technology Session 6.

Computer networks Fundamentals of Information Technology Session 6.
1 Intel / Shiva VPN Solutions Stephen Wong System Engineer.

1 Intel / Shiva VPN Solutions Stephen Wong System Engineer.
Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.

Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.
CHAPTER 8: SECURITY IN COMPUTER NETWORKS Encryption Encryption Authentication Authentication E-Mail Security E-Mail Security Secure Sockets Layer Secure.

CHAPTER 8: SECURITY IN COMPUTER NETWORKS Encryption Encryption Authentication Authentication Security Security Secure Sockets Layer Secure.
Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)

Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)
1.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.

1.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
Encryption and Firewalls Chapter 7. Learning Objectives Understand the role encryption plays in firewall architecture Know how digital certificates work.

Encryption and Firewalls Chapter 7. Learning Objectives Understand the role encryption plays in firewall architecture Know how digital certificates work.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
Remote Access Network Management Kelly Given Allison Traina.

Remote Access Network Management Kelly Given Allison Traina.
A Security Pattern for a Virtual Private Network Ajoy Kumar and Eduardo B. Fernandez Dept. of Computer Science and Eng. Florida Atlantic University Boca.

A Security Pattern for a Virtual Private Network Ajoy Kumar and Eduardo B. Fernandez Dept. of Computer Science and Eng. Florida Atlantic University Boca.
K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.

K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.
THE DICOM 2014 Chengdu Workshop August 25, 2014 Chengdu, China Keeping It Safe Brad Genereaux, Agfa HealthCare Product Manager Industry Co-Chair, DICOM.

THE DICOM 2014 Chengdu Workshop August 25, 2014 Chengdu, China Keeping It Safe Brad Genereaux, Agfa HealthCare Product Manager Industry Co-Chair, DICOM.
Symantec Vision and Strategy for the Information-Centric Enterprise Muhamed Bavçiç Senior Technology Consultant SEE.

Symantec Vision and Strategy for the Information-Centric Enterprise Muhamed Bavçiç Senior Technology Consultant SEE.

Similar presentations

Ads by Google