Enterprise DRM products protect documents from prying eyes

Free Newsletters

Log-in | Register

Enterprise DRM products protect documents from prying eyes Liquid Machines, SealedMedia secure enterprise perimeter by controlling document access, compliance
By Mike Heck August 31, 2006			E-mail Printer Friendly Reprints Slashdot It!

Enterprise DRM (digital rights management) shares DRM’s basic concept of controlling content use. However, it goes beyond unauthorized-copy protection to help stop sensitive information from being read, altered, or shared outside an origination -- while not interfering with users’ work, including their ability to collaborate with colleagues. As such, it’s an important complement to other data leak solutions, such as network scanners.

Free IT resource

Virtualization Insights from Top Experts - Learn how virtualization gets real!

Sponsored by Microsoft

Any enterprise DRM solution should have three characteristics. Security is foremost; documents, communications, and licenses should be encrypted, and documents should require authorization before being altered. Second, the system can’t be any harder to use than working with unprotected documents. Lastly, it must be easy to deploy and manage, scale to enterprise proportions, and work with a variety of common desktop applications.

With these requirements in mind, I tested two notable enterprise DRM solutions, Liquid Machines Document Control 6.0 and SealedMedia E-DRM 5.0.

Liquid Machines Document Control 6.0

Liquid Machines’ Document Control enforces document access and usage policies, including open, read, save, and printing. A Policy Server, which integrates with AD (Active Directory) or LDAP, allows business users to centrally manage roles and policies; designated managers may also audit access and usage violations. On the client side, the Liquid Machines Policy Droplet plug-in enforces your policies -- and allows properly authorized users to modify rights.

Click for larger view.

Although this architecture is fairly standard, Liquid Machines bests competitors in one area: It is policy-server-agnostic. You can install Liquid Machines stand-alone or together with Microsoft’s Windows RMS (Rights Management Services); in the latter case, Liquid Machines’ more flexible policy management is available to RMS.

Document Control 6.0 doesn’t ship with pre-built policies for specific industries or regulatory compliance, which is common practice with many enterprise security offerings and shortens setup. Still, it provides solid information control for protecting IP, works well in secure outsourcing operations, and allows enterprises to establish policies to comply with corporate governance and consumer privacy regulations.

Setting up policies and defining who can access files is clear-cut with Document Control’s Web-based administration console. Rights are assigned to directory accounts by role, which makes large-scale implementations go quickly. I created roles -- such as a financial department analyst -- and then placed AD users within this role.

Maintenance is similarly simple; to revoke rights, for example, just remove a user from the appropriate role rather than editing individual user accounts. The disadvantage in pinning rights to AD or LDAP accounts is that you can’t easily allow outside users -- including partners or offshore workers -- to access documents they may need.

As opposed to RMS, Document Control 6.0’s policies allow auditing, so you’ll know exactly which changes were made, and by whom. Thus, you can confidently delegate policy administration to department heads or other non-IT staff. Furthermore, this solution enhances RMS’s global policy expiration -- you may expire document access to one group of users but not others. This feature’s missing from RMS.

The Policy Droplet management plug-in functioned in various native applications, including Microsoft Word and Visio, without any extra steps. For example, if printing was disallowed, then that action was reliably blocked.

The software clearly shows which policies apply to the document so that users always know what else they can and can’t do -- and whom to contact to change permissions. Policy Droplet allowed me to quickly choose the policy to apply when I created a new file; alternately, enterprises can automatically apply a corporate default policy to new documents.

A further example of Document Control’s tight security is that documents remain protected when converted to Adobe Acrobat. Additionally, the initial protection policy was carried forward when I saved portions of the original document to general formats, such as .txt and .csv.

Continued
1 | 2 | 3 | Next Page »

Liquid Machines Document Control 6.0

Liquid Machines, liquidmachines.com

Very Good 8.1

criteria	score	weight
Ease-of-use	8	20%

Features	8	20%

Performance	8	20%

Reliability	9	20%

Scalability	8	10%

Value	7	10%

Cost:
Document Control Server, $15,000; client, $10 to $100 per user (minimum 100 users)

Platforms:
Server: Windows 2000 Server or Windows Server 2003; SQL Server 2000; client: Windows 2000 or Windows XP with Office Professional XP or 2003

Bottom Line:
Document Control 6.0, a client/server solution that works with its own policy server or Windows RMS, protects documents throughout their lifecycle. Polices are set at business unit or group levels, and cover working with the original document (in the native app) and excerpted sections. Lack of native e-mail protection is one of few shortcomings.

About our Reviews and Scoring Methodology

SealedMedia E-DRM 5.0

SealedMedia, sealedmedia.com

Very Good 8.5

criteria	score	weight
Ease-of-use	8	20%

Features	9	20%

Performance	8	20%

Reliability	9	20%

Scalability	9	10%

Value	8	10%

Cost:
Starts at $50,000

Platforms:
License Server and Management Console: Windows 2000 or 2003 Server; Management Web site: Windows Server 2003; SQL Server 2000 and 2005 or Oracle 9i and 10g; desktop: Windows 98 through XP

Bottom Line:
E-DRM 5.0 provides persistent protection, control, and tracking of documents by classifying them into groups. Access is enforced by a central license server; a desktop component integrates sealing functions into Windows Explorer and Office apps. Other capabilities include revoking access after delivery, offline operation, and thorough auditing of document use and rights administration.

About our Reviews and Scoring Methodology

E-mail

Printer Friendly

Reprints

Slashdot It!


	Mike Heck is a contributing editor for the InfoWorld Test Center.

TOP NEWS:

» You don't know tech: The InfoWorld news quiz
Match your weekly tech news wits against our snarky quiz master

» FBI worried as DoD sold counterfeit Cisco gear
By tampering with networking equipment, spies could open up a back door to sensitive military systems

» Powerset unveils test version of Google-killer
Start-up's search engine is designed to understand the meaning of Web pages, offering the promise of a smarter, more efficient search experience

» AMD refreshes low-power Quad-Core Opterons lineup
Low-power Quad-Core Opteron chips have an average power consumption of 55 watts

» RIM's BlackBerry Bold beats Apple to the 3G punch
The well-connected BlackBerry Bold 9000 supports tri-band HSDPA and quad-band EDGE, 802.11a/b/g Wi-Fi, stereo Bluetooth, and both assisted and autonomous GPS

» Can Sun rejuvenate Java?
Promised technologies begin to emerge that could finally make JavaFX a more serious competitor to Flex, Silverlight, and scripting

BRINGING PERFORMANCE VALIDATION "INTO THE LIFECYCLE"
Today's enterprise apps are complex and ever-changing, which makes delivering high performance difficult. By virtualizing the behavior of application services and data in a VSE, teams can answer this challenge with validation best practices and test tools to ensure solid performance throughout the lifecycle. Register now to attend this webcast! Sponsor: ITKO

» Click here to view this Webcast

The Data Protection You've Been Looking For
Enterprise data is of supreme importance. If you can't find it quickly, it's worthless. If you lose it, it's a crisis. This IT Strategy Guide explores how to keep your data safe.

» Click here to download now

- Special Advertising Partners -

WHITE PAPERS

Advance Your Storage Virtualization - It's your new dynamic duo. This Whitepaper will help you learn to create new virtual machines and storage volumes virtually...
Resolve Capacity Bottlenecks and Enhance Your Virtual Environment - Virtual machine sprawl is causing capacity bottlenecks in data centers. Therefore, it is essential to quickly identify ...
Super-size your LAN - Read how the selection of fiber optic components affects repeaterless transmission distance and how fiber can be used to...
Troubleshooting Remote Site Networks - Best Practices - Deliver a high level of network service at remote sites using the best practices outlined in this white paper. Sponsored...
Virtual Test Lab Automation: Manage development infrastructure - How can organizations provision and manage the development, test, and build systems needed by globally distributed development...
Improve Resource Utilization and Lower Operating Costs - Virtualization is becoming more important in the data center, and to the small business. Better utilization of hardware...

» Technology White Papers Library

Technology White Papers by Topic

Technology White Papers E-mail Alert

Find out when the latest white paper is available:

INFOWORLD MARKETPLACE

Deliver REMOTE SUPPORT Easily. Try WebEx FREE! - DOWNLOAD WEBEX SUPPORT CENTER FREE! Deliver efficient, effective support. CRUSH SUPPORT LOG JAMS!
Migrating to an IP-VPN? XO Can Make It Happen - Learn the five critical success factors with a free whitepaper from XO Enterprise Solutions.
Sign up to TRY WEBEX SUPPORT CENTER FOR FREE! - Get your FULL FEATURED trial here. Share documents and applications, address support challenges.
IP Networks Boost Secure Health Communications - AT&T provides secure communication to keep health care moving forward.
Why a CMDB? - IT best practices (ITIL) have shown the benefits of a CMDB. Click for whitepapers.

» BUY A LINK NOW

FIND PRODUCTS AND COMPANIES

» COMPLETE PRODUCT GUIDE

TECHNOLOGY INDEX

• Applications
• Application Development
• Security
• Networking
• Wireless
• Platforms
• Hardware
• Data Management
• Storage
• Web Services
• Business
• Telecom
• Professional Services
• Standards

TECH WATCH

What's the 411 on GOOG-411?
Just as Google has become synonymous with "performing a Web search," 411 is understood to mean "information" -- as in "what's the 411?" I was thus surprised to discover, from a billboard, no less, that the king of search is taking on the ...

Apple HTML source reveals 'iPhone Extreme'
"This one's a stretch..." reports AppleInsider. Um, yeah. Reporting on HTML code sightings of product names could be called a stretch, but iPhone Extreme has a ring to it. Now, that sounds like the product Apple should have released first, rather ...

COLUMNISTS

Unified under law

(InfoWorld) - In the litigious world we live in, deploying a unified communications platform in your enterprise could...

» MORE COLUMNISTS

MORE INFOWORLD BLOGS

Open Sources

Product Management
When I joined MySQL four years ago, there was quite a lot of debate about product management. We didn't actually have ...

Zero Day

Botnet herders tending smaller flocks
New research backs up the theory that botnet operators are keeping their networks smaller in a continued effort to keep ...

• Advice Line
• Database Underground
• The Deep End
• Enterprise Mac
• Geeks in Paradise
• Grid Meter
• The Gripe Line
• InfoWorld Daily
• Inside IT
• IT Troubleshooter
• ITXtreme
• Open Sources
• ProdBlog
• Real World SOA
• Reality Check
• Security Adviser
• SMB IT
• The Storage Network
• Tech Watch
• Virtualization Report
• Zero Day

RESOURCE CENTER	advertisement
Ads by techwords beta See your link here

GOVERNMENT IT & POLICY
•	'If you don't go after the network, you're never going to stop these guys. Never.'
•	From the State Department, All the News for Inquiring Minds
•	TechPresident, the Internet Citizenry's New Consensus Taker

Sponsored Technology Links
Rackspace - Fanatical Support Promise: Live Support 24x7x365 HP - HP LaserJet M3035 MFP series Starting at $1,599. ?? SHOP NOW Collabnet - Virtual Test Lab Automation: Manage development infrastructure HP - StorageWorks All-in-One Storage Systems. hp.com/betterstorage HP - Improve Resource Utilization and Lower Operating Costs Ipswitch - WhatsUp Gold V12 - network management & monitoring for any size network. HP - Webcast: 5 Things You Need to Know About Storage Virtualization Xerox - Typhoon 8860: Enter to win a Xerox PhaserTM 8860 network color printer! BEA - Webcast: Dialing up Agility with Business Transformation Verisign - Protect Your Data with SSL HP - Speed, agility, flexibility - The HP BladeSystem c-Class. InterSystems - Development, integration, BPM, and BAM together in Ensemble Citrix - Need simple, low cost server virtualization? AMD - We're putting more and more of our energy into saving IT Xerox - Enter to win a Xerox Phaser(TM) 6180 network color printer! Mindreef - Key Strategies For SOA Testing Citrix - Go green.Virtualize servers with Citrix XenServer(TM) - FREE Citrix - Instant server virtualization. Citrix XenServer(TM) - Free! HP - Virtualization: A Step by Step Approach to Success		Neterion - The Missing Piece of Virtualization Microsoft - Tech-Ed 08\|Microsoft's largest tech conference\|June 08 in Orlando Seagate - Maxtor OneTouch(tm) 4 Mini backs up your PC on the go Box.net - Upgrade Your Classic Collaboration Tools Overland Security - The Data Protection You've Been Looking For Lefthand Networks - Free White Paper on Matching Server & Storage Virtualization Vkernel - Resolve Capacity Bottlenecks and Enhance Your Virtual Environment Tripwire - Secure your virtual and physical environments with the same software. Crosscheck Networks - Accelerate Your SOA Projects Nokia - Restore Your Mobile Devices With One Click Oracle - The Power of Two with SOA and BPM Microsoft - Microsoft Forefront security products for business. Learn more. Oracle - Fueling the Responsive Enterprise Microsoft - Meet Windows Server 2008. The server unleashed. Microsoft - Tech-Ed 08\|Microsoft's largest tech conference\|June 08 in Orlando Microsoft - {Open Source} Heroes Happen Here Xerox - Enter to win a Xerox Phaser(TM) 6360 network color printer! Vizioncore - Vizioncore has solutions for virtually any virtual need.

	HOME NEWS BLOGS PODCASTS VIDEOS TECHNOLOGIES TEST CENTER EVENTS CAREERS IT EXEC-CONNECT	About \| Advertise \| Awards \| RSS \| Contact Us
Copyright © 2008, Reprints, Permissions, Licensing, IDG Network, Privacy Policy, Terms of Service. All Rights reserved. InfoWorld is a leading publisher of technology information and product reviews on topics including viruses, phishing, worms, firewalls, security, servers, storage, networking, wireless, databases, and web services. CIO :: ComputerWorld :: CSO :: Demo :: GamePro :: Games.net :: IDG Connect :: IDG World Expo Industry Standard :: IT World :: JavaWorld :: LinuxWorld :: MacUser :: Macworld :: Network World :: PC World :: Playlist