Verdasys, Inc. helps companies address what has become a fundamental business challenge: ensuring the security and privacy of information in today’s electronic world.

Applications of Digital Guardian to Federal Customers

Digital Guardian (DG) offers point-of-use monitoring, reporting, and control of your digital assets. By offering full surveillance of data objects at the desktop or server, DG enables full enumeration of past actions (i.e., complete accountability when sharing information), while also proactively enforcing compliance with FISMA and Privacy regulations. A result of DG’s architecture is the ability to “white list” applications, making zero-day defense or true Defense-in-Depth, trivial to implement. Now instead of having a fire drill to patch critical vulnerability when announced, organizations can regularly schedule tests and updates to network end-points (i.e., patch management), lowering labor costs.

Consequent to its complete real-time capture, DG provides a complete forensically non-repudiated audit trail at near zero reconstruction costs. Auditing data usage, stopping inappropriate use and redaction at any level of granularity become inconsequential to implement.

Digital Guardian Datasheet
Digital Guardian - Customer Data Protection Solution Pack Datasheet
Digital Guardian - Application Logging Datasheet
Digital Guardian - Compliance/Privacy Assurance Datasheet
Digital Guardian - Intellectual Property Protection Solution Pack Datasheet
Digital Guardian - Outsourced Data Protection Solution Pack Datasheet

Federal Information Systems Management Act (FISMA)

• Compliance and Enforcement
  • Implement and enforce security policies for information systems based on risk assessments.
  • Forensically audit and monitor all use of data and computing resources at near zero reconstruction cost.
  • Block inappropriate use of data, network, and computing infrastructure based on security policy.
  • Warn users when violations occur.
  • Prompt users for an explanation when a violation occurs.
• Security Awareness and Training
  • Reinforce security awareness training by notifying users, in real-time, when they are violating security policies.
• Risk Assessment
  • Conduct an initial and periodic review of how your organization’s data is actually used by tracking the creation and movement of data.
  • Identify the inappropriate use of entrusted types of data.
• Testing and Evaluation of Information Security
  • Review summary and detail use of incidents by geographic location, domain, workstation, or user.
  • Search forensic usage logs by filename, source or destination address, protocol, user, access date, or operation (read, write, execute, rename, delete, etc.).
• Planning, Implementing, Evaluating, and Documenting Remedial Actions for Deficiencies
  • Track information security deficiencies by incident.
  • Mitigate deficiencies by implementing policy rules on users, machines, domains, or organizations.
  • Evaluate effectiveness of rules by reviewing summary or detail on incidents.
  • Archive all usage on a periodic basis for future investigation or audit.
• Detection, Reporting and Response to Security Incidents
  • Alert security personnel by email, pager or console notification when violations of policy occur.
  • Respond to alerts, not logs.
• Continuity of Operations (COOP)
  • Maintain security on COOP infrastructure while still providing ease and continuity of use of computing resources.

Defense-in-depth

• On your standard desktop image, prevent ANY unauthorized applications from accessing files, programs or network resources:
  • Malware (viruses, worms, Trojans, etc) which penetrates perimeter is unable to spread (zero-day defense)
  • Personal applications (games, banking, etc) are unable to execute because they are not on the approved “white-list” of applications
• Lower operational labor costs, by stopping the patch management “fire drill”. When new operating system vulnerabilities are announced, update systems on your schedule.
• Prevent zero-day exploits of system vulnerabilities.

Stop inappropriate use of information assets

• Ensure that your information assets, entrusted to insiders, are only used according to official policy.
• Stop casual mistakes, deliberate abuse, or criminal behavior
• Provide a defense-in-depth solution to your identity management solution by stopping outsiders whom assume the identity of insiders
• Block, warn, alert, or silently monitor inappropriate use of unstructured data, network resources, printing, removable media (rewritable optical, USB flash drives, etc.).

Information sharing, enablement, and containment

• Provide full forensic audit logging of all activity on data shared within the “community of trust”.
• Ensure containment of classified and sensitive data with trusted organizations, staff or contractors.
• Prevent inadvertent or intentional misuse of data.
• Provide accountability and non-repudiation of user activity.

Privacy

• Assure the use of technology does not erode Privacy protections relating to the use, collection, disclosure, or deletion of privacy information in its identifiable form.
• Provide continuous auditing of compliance with stated privacy policies, while enforcing the use and distribution of information in operation of a program mission.
• Ensure that personal information contained in Privacy Act systems of record is handled in full compliance with fair information practices as defined by the Privacy Act of 1974.
• Ensure an organization protects information on its information systems from unauthorized access, use, disclosure, disruption, modification, or destruction.
• Provide real-time training to employees on privacy and data protection policies, thru our prompting technology, which will promote awareness, ensure compliance, and enforce privacy and data protection policies.

Manageable audit capability

• Provide manageable and full forensic audit logging of all activity on laptops, desktops, and servers.
• Push audit logs to servers.
• Archive logs to long-term storage, creating repository for forensic information with near zero reconstruction costs.
• Restore logs on demand for investigation or audit.

Legacy Application Remediation

• Redact or block from view sensitive fields in legacy applications without recoding or redeploying the original application.

Law enforcement

• Ensure the chain of custody of information from collection to prosecution
  • Evidence
  • Seized
  • Contraband
• Prevent misuse, alteration, or unintentional leakage of information.

Verdasys can be found on the web at www.verdasys.com.