Re: Tracking Confidential Files - solution?
From: SBC (SBC_at_discussions.microsoft.com)
Date: 08/18/04
- Next message: Jeff Cochran: "Re: VIRUS"
- Previous message: patrick: "getting automatic update continueously, see below"
- In reply to: S. Pidgorny
: "Re: Tracking Confidential Files - solution?" - Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 18 Aug 2004 07:59:02 -0700
I appreciate the response. I actually thought about this last night. Using
hard disk encryption, do you know if profiles can be encrypted individually?
Again, an application specialist will be running queries from a user's
workstation (I am still not sure why this is the case--I will try to find
out) and will probably be saving the query to either their desktop or their
my docs folder. Some users have admin rights on their box, so the profiles
aren't really secure.
Secure back up procedures, storage, and disposal have been in place for
quite some time now :)
Thanks again!!
"S. Pidgorny <MVP>" wrote:
> Full hard client drive encryption on the client plus encryption of the
> network transmission (IPsec or TLS for SQL Server traffic) will help. The
> former is facilitated by a number of 3rd-party solutions, some of them are
> Common Criteria certified. I believe that media encryption of the database
> server wouldn't be required, considering physical and network security
> around it. Make sure you have backup media secured and secure media disposal
> procedures - you'll survive any audit then :)
>
> --
> Svyatoslav Pidgorny, MVP, MCSE
> -= F1 is the key =-
>
> "SBC" <SBC@discussions.microsoft.com> wrote in message
> news:4C65E4D7-FFB2-4C44-AEE8-32D4951AD87E@microsoft.com...
> > Sorry for the rather long delay in responding.
> >
> > I appreciate everyone's input and it has given me some ideas.
> >
> > I just learned that there will be a database involved as well and they
> want
> > to secure the queries. Apparently, queries will be run from random
> > workstations. I am not sure how this can be secured (I am not sure of a
> lot
> > mainly due to this is all in the planning stages according to the team
> > working on this).
> >
> > The only thing that comes to mind is some form of encryption, but the
> > encryption would need to be not only in the transmission of the data, but
> > also in storing the data and it would need to be automatic. That is, if
> the
> > query is saved, it would need to be automatically (or prompted) encrypted.
> > It doesn't appear like anything built into Windows will fit the bill.
> >
> > Is there some third party app that will perform these functions (or most
> of
> > them)?
> >
> > BTW, HIPPA is behind the need for all the extra security. One of the guys
> > on the team was wondering how the military deal with these types of
> > scenerios. I mentioned that how ever they deal with it, user training is
> > probably a major component.
> >
> > Thanks!
> >
> > "S. Pidgorny <MVP>" wrote:
> >
> > > Look into Windows Rights Management Services:
> > >
> > >
> http://www.microsoft.com/windowsserver2003/technologies/rightsmgmt/default.mspx
> > >
> > >
> > > --
> > > Svyatoslav Pidgorny, MVP, MCSE
> > > -= F1 is the key =-
> > >
> > > "SBC" <SBC@discussions.microsoft.com> wrote in message
> > > news:52EC6709-1813-453E-989F-31275FC60067@microsoft.com...
> > > > We have recently been asked whether it was possible to track
> confidential
> > > > files that may be temporarily copied to a workstation from a share and
> > > > inadvertently left on the workstation.
> > > >
> > > > We have several shares that contain confidential files. Sometimes, an
> > > > application specialist will need to copy these files down from a share
> to
> > > a
> > > > user's workstation to troubleshoot and/or resolve an issue. They
> should
> > > > remove the file from the user's workstation once they are done;
> however,
> > > > being the imperfect beings we all are, they may sometimes forget.
> > > >
> > > > In this case, we would like to be able to track the files somehow and
> then
> > > > run a query daily or weekly to find these files and delete them.
> > > >
> > > > Using SMS, it would be relatively easy if we were dealing with files
> that
> > > > were known and unknown files were never introduced, but that will not
> be
> > > the
> > > > case from what I have been told. That is, new files will probably be
> > > created
> > > > frequently. However, the shares in which these files are located will
> > > remain
> > > > constant.
> > > >
> > > > Is there a method or application that can be employed to track files
> > > > originating in a share and then delete these files (preferably
> > > automatically)?
> > > >
> > > > Thanks!
> > > >
> > >
> > >
> > >
>
>
>
- Next message: Jeff Cochran: "Re: VIRUS"
- Previous message: patrick: "getting automatic update continueously, see below"
- In reply to: S. Pidgorny
: "Re: Tracking Confidential Files - solution?" - Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
