Multi-User Encryption Systems

Today, almost all information is available in file format on PC workstations. But in modern IT environments, complete control of the use and distribution of data seems almost impossible.

It is difficult enough to restrict access of authorized users to the necessary files, but the repeated storage in different locations, the partly authorized access of external persons (business partners or consultants), or the use of outsourcing service providers brings about additional challenges to data security.

Some data have to be protected to fulfill legal regulations (e.g., staff and customer data). However, the access to critical data such as management reports, results from the R&D department, or product developments also has to be controlled in the company’s own best interest.

Multi-user encryption systems solve this technical and organizational challenge. Data protection using file encryption enables the separate protection of each file with its own key and encryption algorithm. This way, each file remains individually protected, independent of its protected location (e.g., hard disk, network server, or portable media), and can only be read in clear text by authorized users.

Organizational requirements when implementing a file security solution include:

• No change in usual work behavour
• Support of the company-wide security policy
• High acceptance with shop council

Technical requirements include:

• High ability for the integration into present IT structures
• No restrictions in the file system
• Support the "division of powers" by implementing different roles (e.g., user, security officer, system administrator, and outsourcer)

SafeGuard LAN Crypt is a software solution for protecting files against unauthorized access and unauthorized reading. Files are encrypted and can only be read by authorized users. The group-based concept has also proven itself for use within departments and big organizations.