InfoGuard™ Data Security Management Tool
|
| |
Overview
InforGuard™ is a data security product based on IBS7799 (ISO17799).
It provides product development with cross-system ID, multi-level
access control, data transfer management, security audit and
other integrated data security managing services, fulfilling
the need for secure management of product development within
LAN or WAN.
As a security management tool running background, InfoGuard™ constructs a highly secure data management and design collaboration environment for product development through integration with other DOIT™ system products like DataConfig™ (data configuration management tool), IPBuilder™ (IP construction management tool), CoDesigner™ (Design collaboration management tool).
Value:
• Creating data security management environment based on international standard;
• Real-time data security view for company's decision-making level;
• Integration of data security technique and product development process;
• Effective protection for company's IP, maintaining core competence.
Features |
 |
Cross-Platform User Management |
| |
InforGuard™ system employs SSO ID, users are able to operate data in multiple OSs after signing on any client servers in design network, therefore it achieves unified ID on isomerous design network. Unified ID establishes relationship between all activities trace in each OS and specified users, enabling complete record and reservation of personal activity information.
|
|
Multi-Level Access Control |
| |
RBAC-based InfoGuard™ establishes relationships between user's role (i.e. CEO, design manager, project manager, engineer and etc), data objects (i.e. product database, project-level or module-level design data) and access control of each data working areas.
To meet the needs for secured and personalized data, InfoGuard™ provides multi-level access control, permits system administrator to grant data managing rights to project person-in-charge who will then determine data and EDA/CAD operational rights.
|
Multi-Level Role Management and Access Control
|
Data Security Audit Information
|
|
Engineering Data Content Identification |
| |
Data security in engineering application requires orderly management for transfer and hand-over of different data in product development. Therefore, InfoGuard™ provides a management that controls data transfer according to engineering data formats. Through customization of FTP/HTTP, InfoGuard™ is able to resolve transferred engineering data or document format and content, permitting or prohibiting certain data transfer, eliminating harmful and illegal data transfer.
|
|
Data Security of Built-in Workflow |
| |
InfoGuard™ divides data security management into several procedures running background, providing data security service for other DOIT™ management tools including DataConfig™ (data configuration management tool), IPBuilder™ (IP Construction management tool), CoDesigner™ (Design Collaboration management tool), OptimRes™ (resource management tool) and FlowMaker™ (Flow management tool).
|
|
Data Encryption for Portable Device |
| |
InfoGuard™ monitor and record data output from USB port, portable hard drive, printer in real-time. To grant e-authorized management for output data, data output port can only be opened after approve and record of users' legitimate data output request in the system. After encryption, data will be transferred to portable storage devices; users can use decrypted transferred data only on computer installed with InfoGuard™ client programme.
|
|
Dynamic Audit on Enterprise Data Security |
| |
InfoGuard™ performs classified audit on system operations (copy, delete, paste, list and link), application operations (usage and close of EDA/CAD tools) and data transfer operation according to project organization, users and dates. Data security status daily log, weekly log and monthly report will be provided afterwards as well as historical reference for design activities.
Through InfoGuard™'s data security view, company's managing level is able to grasp formation of IP data and its security condition in time, capture data security hole promptly and control IP security incidents in real time.
|
| Operating Environment |
Hardware |
| Network |
Supporting TCP/IP company Intranet bandwidth
10Mbps min.
100Mbps recommended |
| Database Server |
1G RAM minimum 40G hard disk space minimum |
| Version Server |
1G RAM minimum 200G hard disk space minimum |
| Client |
512M RAM minimum 10G hard disk space minimum |
| Software |
| Database |
Oracle 9i or higher |
| J2RE |
Version 1.4.2 or higher |
| Other Software |
LDAP service, fedora-ds recommended |
| Server |
Supporting RH Linux 7.3 or higher, Solaris
8 or higher |
| Client |
supporting Windows 2000 or higher, RH Linux
7.3 or higher
Solaris 8 or higher |
|
| |
