Home > Seclore FileSecure > Repositories > FileNet
FileNet
IBM FileNet provides a user friendly integrated file sharing and enterprise content management system. FileNet deployments usually become central repositories of information, a lot of which is confidential. The central repository also becomes a central point of failure for data breaches. A large number of these data breaches happen when information downloaded from FileNet is forwarded, using other means, to unauthorized recipients.
FileNet provides granular control over who can access each piece of content. The controls govern who can view, download and upload the information within FileNet. The controls unfortunately do not extend to content once it is downloaded from FileNet. FileNet's security is limited till the time the information is within FileNet. Once the information leaves FileNet and comes to desktops, laptops or mobile devices, then FileNet's security policies are not effective on the information.
Seclore FileSecure extension for IBM FileNet extends the scope and reach of security policies defined within FileNet. Using the extension enterprises can secure documents, images and even drawings when they are downloaded from FileNet. Seclore FileSecure enables enterprises and individuals to:
1. Define Information Usage Policies
A usage policy defines:
WHO can use the information i.e. people / groups within or outside of the enterprise
WHAT can each person do with the information i.e. read / edit / print / distribute / copy
WHEN can each person access the information i.e. within certain dates, within a timespan
WHERE can the information be accessed from i.e. specific computers, within the office.
2. Attach Policies To Individual Folders within FileNet
This is done using the interface integrated within FileNet itself
3. Control Usage Of The Policy Governed Information
Information downloaded from FileNet is automatically protected by the Seclore FileSecure extension for IBM FileNet. This information can only be used in compliance to the policies defined.
The policy attached to the information can be even changed post download i.e. the "owner" can change WHO/WHAT/WHEN/WHERE and the usage policies of information already downloaded from FileNet will also change automatically to reflect the new policy.
4. Audit The Usage Of The Information.
Information protected with Seclore FileSecure can not only be controlled for usage, it can also be audited.
WHO used the information, WHAT did he/she do, WHEN & WHERE is captured from distributed usage environments even outside of FileNet and reported centrally.
These audit reports can be sliced and diced using a report builder and can be used in compliance reporting for frameworks like ISO 27001, Sarbanes Oxley, GLBA, PCI DSS & HIPA
Feature |
FileNet |
FileNet + Seclore FileSecure |
Access Control |
Can provide control while the information is within the system only |
Can provide control even after the information is download from the system |
Usage Control (View, Edit, Print, etc) |
Does not provide usage control |
Can provide usage control persistently within & outside the system |
Policy changes |
Can reflect changes in policies while the information is within the system |
Can reflect changes in policies while the information is outside the system & in real time |
Audit trail |
Can provide audit trails for information before download only |
Can track all authorized and unauthorized attempts on information before and after download |
For a detailed view of the way Seclore FileSecure extension for IBM FileNet can be used to protect content within FileNet, please click on the related links on the side