Data protection is more nuanced than simply allowing or denying
access. The ages-old concept of group and individual permissions for
file and folder access are based on the fact that one person may have no
business opening a given file, while the next person may need to read
and review that same file as a function of their role. This same type of
control is needed when it comes to allowing data to be printed, or
stored on an external drive or USB flash drive.
Because protecting data is not a black and white issue, the solution
needs to be more flexible than simply blocking or allowing access. Zecurion’s Zlock
gives IT admins the ability to apply fine-tuned controls that prevent
the unauthorized copying and storing of data without impeding
legitimate, authorized use of removable media at the same time. Just as
one person may have no business opening a file that another person needs
to do their job, one person may have no legitimate business purpose for
storing data on removable media, while the next person may need that
capability to perform their job function. A solution that simply locks
down USB ports is like killing a housefly with a hand grenade, and
applies too broadly to provide functional data protection.
Zlock takes it a step farther, though. Jim may have a business need
to store sensitive data on a removable drive, but you don’t need to
grant blanket permission to Jim. You can still set up controls in Zlock
that let Jim store data on a USB flash drive, but only if the data is
encrypted. In fact, IT admins can configure Zlock to only allow Jim to
store data on a specific brand of company-issued flash drives, or even a
specific hardware ID of an individual USB flash drive issued to Jim.
That way, data is protected, and the flow of sensitive data is
controlled, but Jim is still able to do his job without having to jump
through any additional hurdles.
Article Source: http://goo.gl/5czex
