Secure Documentation Management (Please Suggest SOlutions)

From: Jack Hill (solvedconstant@yahoo.com)
Date: 01/23/03

  • Next message: Rapaille Max: "Searching a commercial version of Dumpsec" 
    Date: Wed, 22 Jan 2003 20:55:16 -0800 (PST)
From: Jack Hill <solvedconstant@yahoo.com>
To: security-basics@securityfocus.com

    Hi All,

    One of my client ( a designing firm) has requirements
    to securely manage their design blue prints.

    Their main concerns focus on making sure that their
    documents are stored securely and in addition have the
    following requirements.

    1:- For example if a person is sending a document
    (attached ) with mail to another person,the other
    person should only be able view the document.In
    addition he should not be able to mail the same
    document to others.

    2:-The same applies for taking printouts of documents
    too...that is the document should have read permission
    but no print rights.

    3:-Extensive logging should be configured for all
    document access such as whether the document was
    copied onto a floppy,whether the document was printed
    and if so by whom .

    I was thinking in lines of a dedicated server which
    will act as document repository , documents will be
    encrypted and signed by it's owner using PGP,and the
    authorized users can download it using SCP or
    encrypted mail.But I am not quite sure of assigning
    the kind of permissions which he require and
    configuring of the extensive logging which he
    requires.

    Request you guys to give me your valuable suggestions.

    Thanks,
    Solved COnstant

    __________________________________________________
    Do you Yahoo!?
    Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
    http://mailplus.yahoo.com

    • Quantcast