CA Technologies Data Protection
can you protect and control information?
CA Technologies purchased Orchestria in 2009
–
Core capabilities of DLP: discovery, content classification & enforcement
–
Support CSU Content-Aware IAM strategy
Continued Content-Aware IAM execution
–
Identity & Content: As roles change the control of data is maintained
–
Access & Content: Content-aware access management
CA Technologies Content-Aware IAM
strategy
2
Security software from CA Technologies
IT challenges
it is all about the unknowns
Classification and location of sensitive
data is not known
Authorized or not authorized data
users and usage is unknown
Appropriate or inappropriate data flow
is unknown
Data relation to compliance is unknown
Compounding Factors
–
Data is dynamic and massive
–
Existing business processes can’t be
hindered
Information Protection and Control
Data
What do these numbers represent?
Of companies send sensitive information over email
Of global 1000 companies will have stored
customer-sensitive data in the public cloud by 2016
Of mission critical documents are stored in companies
SharePoint environment
Companies believe mobile devices have contributed
to security events
Source: Ponemon Institute LLC, The Escalating Importance of Email, September 2011
Source: OpenText Global 360, How are Businesses using Microsoft SharePoint in the Enterprise? Fall 2011 Market Survey.
Source: CheckPoint Software Technologies, The Impact of Mobile Devices on Information Security, January 2012
Source: Gartner, Gartner reveals Top Prediction s for IT Organizations and Users for 2012 and Beyond
50%
50%
69%
71%
CA data protection solution areas
4 enterprise areas of high data risk
MOBILITY
Control the distribution and communication of sensitive information via mobile technologies EMAILMitigate the risk of exposing sensitive
information through the accidental, negligent and malicious email
communications
COLLABORATION
Control sensitive
information posted, stored and shared in collaboration platforms
Cloud
single solution provides best value
not 3 but 4 channels of control
CA DataMinder Network
Monitor and control data at network egress points
CA DataMinder Message Server
Monitor and control email at messaging servers
CA DataMinder Stored Data
Scan and manage data on shared folders, file and document
repositories, public folders, ODBC sources and other repositories.
CA DataMinder Endpoint
Monitor and control data at the endpoint
CA DataMinder Classification
Classifies content enabling fine grained access controls
DATA IN MOTION
DATA AT REST
DATA IN USE
CA DataMinder Management Platform
One management platform with common reporting, data policies and incident review
DATA AT ACCESS
DATA IN MOTION
DATA AT REST
DATA IN USE
DATA AT ACCESS
ENTERPRISE
MANAGEMENT
CA DataMinder Classification
Classifies content enabling fine grained access controls
Scan, extract and classify content from file servers, databases and repositories
Classification of content for consumption by 3rd party software components
Web Services API enables external commands and integration of classification data
Enables content aware Identity & Access Management
Technology Supported: – IAM – Storage – File Servers – Collaboration Software 8
single solution provides best value
CA DataMinder
Copyright © 2012 CA. All rights reserved.
DATA IN MOTION
DATA AT REST
DATA IN USE
DATA AT ACCESS
ENTERPRISE
MANAGEMENT
CA DataMinder Endpoint
Monitor and control data at the endpoint
Controls email, web, printing and saving data
Scans for sensitive data on the endpoint
On-line and off-line enforcement
Incident-appropriate response upon detection of a violation
Educate end-users with an educational popup window to explain company or regulatory policy
Scalable to tens and hundreds of thousands of endpoints
single solution provides best value
CA DataMinder
CA DataMinder Management Platform CA DataMinder Load Gateways CA DataMinder EndpointEmail Web Save Print App Control
File Scan
DATA IN MOTION
DATA AT REST
DATA IN USE
DATA AT ACCESS
ENTERPRISE
MANAGEMENT
10
single solution provides best value
CA DataMinder
Copyright © 2012 CA. All rights reserved.
CA DataMinder Network
Monitor and control data at network egress points
Controls many protocols (web, email, instant message, ftp, etc)
Implemented as a network appliance or integrated to ICAP servers and MTA’s CA DataMinder Message Server
Monitor and control email at messaging servers (MS Exchange and Lotus Notes)
Control out bound but also internal, web access and mobile device email
Implemented as a component in conjunction with mail servers.
DATA IN MOTION
DATA AT REST
DATA IN USE
DATA AT ACCESS
ENTERPRISE
MANAGEMENT
single solution provides best value
CA DataMinder
CA DataMinder Stored Data
Scan and manage data on shared folders, file and document repositories, public folders, ODBC sources and other repositories.
Implemented as a local server or network scan.
Discovery/scanning tasks can be executed on-demand or on a specified schedule
Highly scalable and distributed architecture
Information can be deleted, copied, stubbed or moved to another location
ENTERPRISE
MANAGEMENT
12
accurate, scalable, and modular
CA DataMinder
Copyright © 2012 CA. All rights reserved.
CA DataMinder Management Platform
Accurate Analysis
– Fingerprinting – Zero False Positives
– Full fingerprinting
– Partial fingerprinting
– Description – Minimize False Negatives Modular architecture to expand on
demand
Scalable Architecture
Common reporting, data policies and incident review
Address Multiple Use Cases
– Surveillance and supervision of
compliance related information and DLP
CONTENT REGISTRATION • Exact Data • Partial Data • Fingerprinting CONTENT DESCRIPTION • Keywords • Stemming • Wildcards CONTEXT ANALYSIS • Identity • Hierarchy • Role CONCEPT ANALYSIS • Intent Aware • Business Aware • Absence of Content
CA DATAMINDER PROVIDES COMPLETE SET OF
DETECTION METHODS TO ACCURATELY DETECT CRITICAL DATA
DATA IN MOTION
DATA AT REST
CA DataMinder Partnerships
broad technology support
CA DataMinder Partnerships
Encryption
Digital Rights
Management
Message Server
& ICAP Proxy
Access Control
Archive
Discovery
Data
Protection
Network
Protection
System
Protection
16
iConsole
Review events for all policies and
control points from a single UI
Interactive Dashboard with drill-down
in charts to individual violations
–
Get a quick status of the risk areas
across the company
–
URL access from SIM solutions
policy/role-based security and review
CA DataMinder user hierarchy
controls the security applied to
data access
18
protection ecosystem
Flexible Remediation
–
Monitor for violations
–
Warn to educate
–
Quarantine for approval
–
Encrypt valid use
–
Block improper use
–
Digital rights assignment
–
Justification for improper use
–
Replace sensitive data with links
–
Move stored data
–
Delete within unacceptable locations
Copyright © 2012 CA. All rights reserved.
Digital Rights assignment
Justification for improper use
Replace sensitive data with links
Move stored data
flexible and scalable architecture
Policy
Captured Events
Unified Platform Control Points
Network
HTTP/S SMTP IM FTP ICAP MTAMessage Server
Exchange Domino Bloomberg MTAEndpoint
Removable Media Print, Screen Print Web Email App Execution File ScanningStored Data
File Shares NAS SharePoint Public Folders MS SQL, OracleData Import
CA Message Manager 3rd Party Archives Historical Email, IM logs… GatewayScale and Load Balance
Gateway
Scale and Load Balance
Central Management Server
Review + Dashboards Reports + Queries
Content Aware IAM
– CA Technologies is the only IAM vendor with DLP capabilities
Identity Centric Approach
– Understand and leverage the relationship between people and data
Complete Control of Data
– At-access, in-use, in-motion and at-rest
– Discover, monitor and protect
– Partner ecosystem
Rapid Value
– Provide accurate analysis driven by flexible,
identity-aware policies (accuracy leads to effective DLP)
– Modular solution
summary
*Source: Gartner, “Magic Quadrant for Content-Aware Data Loss Prevention”; Eric Ouellet, Rob McMillan; August 10, 2011
This Magic Quadrant graphic was published by Gartner, Inc. as part of a larger research note and should be evaluated in the context of the entire report. The Gartner report is available upon request from CA.
The Magic Quadrant is copyrighted August 2011 by Gartner, Inc. and is reused with permission. The Magic Quadrant is a graphical representation of a marketplace at and for a specific time period. It depicts Gartner's analysis of how certain vendors measure against criteria for that marketplace, as defined by Gartner. Gartner does not endorse any vendor, product or service depicted in the Magic Quadrant, and does not advise technology users to select only those vendors placed in the "Leaders" quadrant. The Magic Quadrant is intended solely as a research tool, and is not meant to be a specific guide to action. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
**Source: Forrester Research, Inc. , “The Forrester Wave™: Data Leak Prevention Suites, Q4 2010”; October 12, 2010
The Forrester Wave™ is copyrighted by Forrester Research, Inc. Forrester and Forrester Wave™ are trademarks of Forrester Research, Inc. The Forrester Wave™ is a graphical representation of Forrester's call on a market and is plotted using a detailed spreadsheet with exposed scores, weightings, and comments. Forrester does not endorse any vendor, product, or service depicted in the Forrester Wave. Information is based on best available resources. Opinions reflect judgment at the time and are subject to change.
