|
Without impacting existing applications, innerGuard dynamically redacts sensitive information; provides complete and meaningful logs of all transaction requests and responses; delivers real-time notifications of suspicious activities; allows role-based permission policies; and, enables compliance with regulatory mandates.
Easy to deploy and administer, innerGuard is designed for corporate operations, security, privacy, risk or audit professionals. It is a complete and cohesive solution for companies needing to safeguard data in motion.
With innerGuard, you can dynamically redact sensitive and non-essential information from application screens transmitted to users – whether Web-based or legacy systems. Specifically, in context of the user role, it allows all or parts of data transmitted to your users in an application transaction response to be redacted in flight without requiring any changes to the host application.
For example, an entire SSN might read 987-65-1234 as transmitted to a user's screen. It can be filtered by innerGuard to appear as XXX-XX-XXXX or XXX-XX-1234 depending on your specific need. If required, innerGuard can be configured so that a supervisor or manager can view the same screen with all the data.
In addition , aspects of the screen which are either never used or not required can be removed to optimize the viewable area creating more “white space” to increase the operator's efficiency.
It is a powerful solution for controlling who has access to specific information -- and when.
innerGuard eliminates legwork and guesswork by enabling companies to match who someone is with what they do with business applications. While technologies exist that alert you to the existence of external threats, innerGuard observes internal threats or irregular activities of authorized users.
With innerGuard, visibility for business leaders is streamlined and consolidated. Alerts and log entries for noteworthy behaviors are created in real-time. Misuse can occur inadvertently or due to malicious intent, either way innerGuard gives you the power to identity and prevent it.
As a continuous audit, logging and reporting product, innerGuard centralizes the tracking of application usage by employees, customers, partners and contractors.
Through an interactive dashboard innerGuard enables you to know in real-time when questionable application transaction activities take place. The dashboard visualizes events as they occur and allows for an immediate corrective action.
A configurable incident response service alerts key personnel whenever specific events take place.
|
|
From a central location, innerGuard is able to inspect all user requests and, based on your role, apply rules to those requests that define how you are able to interact with an application. If a request is made which violates a predetermined rule, the request is blocked and never transmitted to the application. Without altering your applications innerGuard aligns application usage with business rules and processes by applying application level policies. This approach enables companies to know who’s using their applications, what they are doing and stop unauthorized activity.
Through the creation of unalterable logs and the real-time protection of sensitive information, you are able to comply with government and industry mandates like PCI, SOX, GLB and HIPAA. The meaningful logs created by innerGuard also provide material for forensics analysis.
innerGuard scales and optimizes easily for load balancing and fail over. Specific features include:
- Low total cost of ownership - innerGuard is easy to configure, deploy and manage. It enables companies to focus on what is truly important - maximizing business efficiencies and growth.
- BITS compliant - Meets all the criteria of the Banking Information Technology Secretariat (BITS) common criteria for application security.
- Separation of security management from application management - Implement precise, business process specific policies from a single console without touching the applications themselves. Modified policies are effective immediately for all applications.
- Unified role management for groups and individuals - Employs role-based inheritance to assign, extend and revoke privileges.
- Time- and network-based access control support - Allows access based on time of operation or specific machine addresses.
innerGuard is preconfigured to support most common enterprise protocols including: HTTP/S, .NET, J2EE, TN3270, TCP/IP, XML-RPC, CORBA/IIOP, SOAP, SMTP, TDS (SQL-Server, Sybase and MySQL), FTP, WebSphere MQ, and RMI.
For more information on innerGuard please e-mail us at sales@cerebit.com.
|