What are FCA AICWA and ACS

SafeGuard Enterprise Integrated data security

  • SafeGuard Enterprise Integrated data security Product Management Utimaco Safeware AG

  • Challenges Today 1. Increase in data loss and -theft

  • Today's Challenges 2. Growing up as confidential classified data • Over 20 very significant data losses in the past 12-18 months. • More than 97 million data records with confidential personal information have been affected in the event of a security breach since 2005. (Source: www.privacyrights.org/ar/ChronDataBreaches.htm, 11/2006) • A notebook is stolen every 53 seconds. (Source: http://www.usatoday.com/tech/news/computersecurity/2006-11-19-lockdown-laptop_x.htm) • 90% of companies identified security breaches within the last 12 months (Source: Federal Bureau of Investigation, 2006)

  • The need for data security 3. Increasing legal regulations increase the need for data security

  • About UtimacoOur business

  • Next generation data security Implementation of a 360 ° approach to data security

  • SafeGuard solutions The next generation of security

  • Raber + Märcker - announcement • A completely modular security suite, • which comprehensively meets current and future data security requirements. • Regardless of where information is stored or with whom it is exchanged.

  • SafeGuard Enterprise The next generation of Data security • protects against theft and loss of information, • protects the confidentiality of your data regardless of where this data is located • offers uniform protection on various mobile end devices • corporate customers receive a comprehensive, modular and centrally managed solution to secure their critical information + + + + +. . .

  • What is SafeGuard Enterprise? SafeGuard Enterprise is the new generation of Utimaco Safeware products for protecting end devices and confidential data. SafeGuard Enterprise consists of 4 modules with a common, central, cross-platform administration interface. SafeGuard Enterprise was developed on the basis of current standards and Utimaco's more than 20 years of experience in IT security.

  • SafeGuard EnterpriseDesign criteria • Scalable architecture from hundreds to many thousands of devices • Use of modern, open standards - expandable by partners • Language support, easy to expand and localize • Policy concept for managing users, roles and rights • Hierarchical administration with rules for access and delegation • Strict separation of system (IT) and security administrators to adhere to the principle of separation of responsibility and to facilitate outsourcing • Detailed logging and auditing - can be processed by the customer • Permanent integrity check of software, policies and configuration • Encrypted, secure storage of data on client and server • Encrypted, secure communication between client and server • Easy migration from our existing SafeGuard products

  • SG Enterprise overview Modular functions - an open system

  • SG Enterprise overview SafeGuardManagement Center • Central and standardized security administration • Role-based administration • Use of existing infrastructure (AD) • Cross-platform, hierarchical definition of security guidelines • Enforcement of company-wide security guidelines • Automatic policy distribution across all platforms • Logging and status reports Modular functions - one open system

  • SG Enterprise overview SafeGuardDevice Encryption • Power on Authentication (POA) • Cross-platform protection of all data on end devices against unauthorized access • “Smart Media” encryption User-transparent (sector or / file-based) • Security in every power-on state of the end device • Safe and simple emergency procedures (challenge - Response) Modular functions - an open system

  • SafeGuard Device Encryption Some strengths: • Pre-boot authentication • Smart cards and certificate support • Handover of the Logonan Windows • Bitlocker support Cross-platform Protection of data on PCs, notebooks or removable media against unauthorized access

  • SGN Device Encryption • New and flexible PBA (= 32-bit POA) • Very flexible smart card integration in the POA • Support of USB card readers that support the CCID standard • All modern PCI Express card readers • PCMCIA card readers: CardMan 4040

  • SafeGuard Device Encryption key functions • “Smart Media Encryption” • Flexible key / volume assignment: Supports the use of encrypted devices for different PCs and workgroups • Either sector or file-based encryption of hard drives, removable media including CD / DVD • Single logon to Windows • Support for Active Directory users • Kerberos • 32-bit pre-boot authentication • High flexibility for the integration of smart cards, SC readers and USB tokens, through PKCS # 11, PKCS # 15 and PC / SC standards • User-friendly GUI in customer CI • Open to new functions • Highlights • 32-bit pre-boot (certificate-based) • “Smart Media Encryption”, incl. CD / DVD • Active Directory integration

  • Smart Media Encryption • Transparent encryption of confidential data on removable media Digital Cameras Portable Music Players Floppy, CD / DVD-RW Floppy, CD / DVD-RW Memory cards Memory cards

  • Microsoft and Utimaco have big plans together www.it-business.de 02/19/07 Zahedani: “Utimaco is a member of the» SecureIT Alliance «initiative, which Microsoft launched in autumn 2005 and in which over 100 partners are already participating, and the trend is rising. The development teams of the two companies have worked closely together so that Safeguard Enterprise 5.0 can now be seen as a seamless extension of Microsoft's Bitlocker. That is the beginning of a very good cooperation. " Said Zahedani, Director Developer Platform and Strategy, Microsoft http://www.it-business.de/themenkanaele/produkte/security/applikationssicherheit/articles/58034/

  • SGN Management Center support / integration of BitLocker Integration of BitLocker in SafeGuard Enterprise

  • SG Enterprise overview SafeGuardFile & Folder Encryption • Working group-oriented encryption, especially in the network • Cross-platform, uniform encryption solution • Separation of powers between system administrators and security officers • PKI support (X.509 certificates) (future module from SG Enterprise) Modular functions - an open system

  • SG Enterprise overview SafeGuardData Exchange • Encrypted data exchange with “external third parties” via files, e-mail, removable media • Seamless integration into common e-mail programs (including Outlook) • Partners do not need SafeGuard Enterprise for secure communication • Transparent solution for internal data exchange (future Module from SG Enterprise) Modular functions - an open system

  • SG Enterprise overview SafeGuardConfiguration Protection • Protection against unauthorized configuration changes • Management of interfaces and devices (including plug & play control) • Management of the use of applications • Improved system stability and integrity (future module of SG Enterprise) Modular functions - an open system

  • Security SafeGuard Engine SafeGuard EnterpriseOverview Interaction • SafeGuard Management Center • SafeGuard Security Engine Modular functions - an open system

  • Security SafeGuard Engine SG Enterprise Overview SafeGuard Security Engine • Guarantees multi-platform integration of all SafeGuard components. • Use of current standards (LDAP, XML, SOAP, X.509, PKCS, SSL, TCG, ...) for simple, flexible integration into existing IT infrastructure. • Use of internationally recognized algorithms • Enables uniform key management across all platforms and modules • Use of standard interfaces for the integration of smart cards, tokens and TPM Modular functions - an open system

  • Security SafeGuard Engine SG Enterprise Overview SafeGuard Security Engine • PKI / Certificates • X.509v3 • PKCS # 7, PKCS # 12 • LDAP • Smart cards, tokens: • PKCS # 11, PKCS # 15 • Crypto API (CSP) • PC / SC, USB CCID • TPM • Passwords, padding: • PKCS # 1, PKCS # 5v2 • Databases: • MS SQL Server • Data transfer and exchange • SOAP, XML, SSL Modular functions - an open system

  • SG Enterprise Communication Flow & Architecture • Components and the data to be transferred in a typical scenario

  • A look at management ...