IBM Lotus Protector Data Loss Prevention and Email Security in an increasingly connected World Gary Wickham, Senior Technical Specialist, IBM Adam Osborne, Principal Consultant, Preemptive Consulting
IBM Lotus ProtectorData Loss Prevention and Email Security in an increasingly connected World
Gary Wickham, Senior Technical Specialist, IBMAdam Osborne, Principal Consultant, Preemptive Consulting
AusLUG 2013
Agenda
● Social Business Security
● Content Filtering and Inspection
● Email Encryption
● Local Examples
AusLUG 2013
Antispam & Antivirus Encryption Content
FilteringCollaboration
Security
Security Products
IBM Lotus Protector• Extends e-mail with new security and data protection capabilities● Works with Notes and Outlook® UI & security model
● Protects both internal and external email traffic● Integrates Anti-Virus protection into WebSpere® applications
and other messaging platforms
The information on the new product(s) is intended to outline our general product direction and it should not be relied on in making a purchasing decision. The information on the new product is for informational purposes only and may not be incorporated into any contract. The information on the new product is not a commitment, promise, or legal obligation to deliver any material, code or functionality. The development, release, and timing of any features or functionality described for our products remains at our sole discretion.
AusLUG 2013
Optimized technologies designed for Social Business
● Powerful content protection and filtering● Extend data protection and compliance by easily weaving protection
across your social business platform● Supports data protection initiatives
● PCI, HIPAA, SOX, EU Data Protection Act, Japanese, Australian, and international data privacy regulations
● Internet e-mail encryption solution to anyone, anywhere● Automate security without changing business processes, without
complexity for end users or IT
Reduce administrative burdens of traditional products with a solution that works with both Lotus and Microsoft solutions.
AusLUG 2013
Agenda
●Social Business Security
●Content Filtering and Inspection
●Email Encryption
●Local Examples
AusLUG 2013
Protector understands Social Business!– Filter confidential or personal information– Block viruses in files to social business tools– Create line-of-business filters for inappropriate content– Empower end-users to keep unwanted content out of their
inbox– Powerful and flexible content filter policy, anti-spam and
anti-virus engines
AusLUG 2013
Deployment FlexibilityUser or PVU Software License
World class technology
Virtual Appliance
Integrated Security
Stopping threats that attempt to exploit undisclosed vulnerabilitys before software
vendors are able to provide a patch by leveraging virtual patch technology.
Physical Appliance
...works with all e-mail systems!...works with all e-mail systems!
AusLUG 2013
File Attachment Inspection (aka DLP)Able to detect the smallest detail inside emails (including Documents, Spreadsheets, Presentations and PDFs)Intelligent enough to not detect “similar” information
● Out-Of-Box Pattern Matches and ExpressionsInspect for “anything”
● Personally Identifiable Information● Financial Information
new
AusLUG 2013Social Business Integration
Protection over standard IBM WebSphere® ICAP interface (Internet Content Adaption Protocol, RFC 3507)
● Real-time File Analysis for Viruses● Protection from known and unknown viruses● Pro-active alerting to users
new
AusLUG 2013
Content FilteringEmpower line of business initiatives
Take control of content● URLs● Languages● File Types● Unwanted Content● Inappropriate● Pattern Matching
AusLUG 2013
●Gives end users complete control over ALL unwanted e-mail!●Reduce costs on help desks and administrators
End-User Controls
Objective Spam● Pharmaceutical, sexual, stock scams, etc
● IBM Lotus Protector for Mail Security stops objective spam cold at the gateway
Subjective Spam● Newsletters, mailing lists, event invitations, etc● IBM Lotus Notes integration lets users block subjective
spam senders permanently
AusLUG 2013End-User Integration
See something you don't want in your inbox?Block sender forever!
Already integrated in Notes !!
AusLUG 2013
Manage blocked messages – both spam and blocked senders – right within Notes!
AusLUG 2013
Agenda
●Social Business Security
●Content Filtering and Inspection
●Email Encryption
●Local Examples
AusLUG 2013
What does it do?It extends e-mail encryption to the InternetIt secures e-mail using the most seamless encryption available for a given recipientIt provides options to recipient for preferred method of communicationIt ensures content in transit is not intercepted or modifiedIt saves money on couriers, certified mail, overnight delivery, faxes, etc.
AusLUG 2013
Deployment FlexibilityPer-User Software License
World class technologyNotes/Outlook integration
Physical or Virtual ApplianceClient
Gateway
Backed and supported by:
AusLUG 2013
Protector for Mail Encryption is intelligent about finding the best, most seamless encryption mode for every userAutomated gateway policy controls
Notes/Outlook
Domino/ Exchange
Notes/Outlook
Protector for Mail
EncryptionGateway
Finding the Best User Experience
AusLUG 2013Finding the Best User Experience
Process Ownerw/o Protector w/Protector
Certificate Creation Request User ProtectorCertificate Creation Administrator ProtectorCertificate Import User ProtectorCertificate Protection User ProtectorEncryption Decision User User and/or
ProtectorSearch for Receivers Certificate User ProtectorEncrypt Message and Deliver Email Client Protector and
Email ClientManage Receivers Certificates User Protector
AusLUG 2013
Agenda
●Social Business Security
●Content Filtering and Inspection
●Email Encryption
●Local Examples
AusLUG 2013
Australian Government Email Protective Markings
● Introduced in 2005, and recently updated● Mandates all email to carry a Protective Marking● The Protective Marking is in the form of:
- additional information in the Subject field of a Message- additional Internet Message Header Extension
For example:
AusLUG 2013
Australian Government Email Protective Markings
● User asked for a Protective Marking on sendTypical implementation
AusLUG 2013
Configuration Topology
Notes Protector for Mail
EncryptionGateway
Domino
1
2
Example of end to end send
AusLUG 2013
Example of end to end send via Web Messenger
Example of sending a medical report over the Internet
- Configure a rule so sensitive email goes via Web Messenger
AusLUG 2013
1. Example of end to end send via Web Messenger
● User marks the message on Send
AusLUG 2013
1. Example of end to end send via Web Messenger● Recipient receives a registration message
AusLUG 2013
1. Example of end to end send via Web Messenger
● Now they can read and reply to the message ● Note: The Web messaging interface can be branded
AusLUG 2013
2. Example of end to end send via PDF
AusLUG 2013
2. Example of end to end send via PDF Simply change the delivery method to PDF Messenger
AusLUG 2013
2. Example of end to end send via PDF
AusLUG 2013
Email Compliance and archiving are still significant issues
You don't know what you don't know... so make sure you can find out
AusLUG 2013
Email Compliance and archiving are still significant issues
● Look in your email Archiving and Compliance System
AusLUG 2013
Email Compliance and archiving are still significant issues
● Make sure you can find out what has been sent (if required)
AusLUG 2013
Don't forget about mobile devices● Traveler is a fantastic free feature of Domino, but watch out for Data Loss Issues● Protector has no direct tie into Traveler (yet ?)● Common problem is attachments can be opened with third party applications and exported
AusLUG 2013
Don't forget about mobile devices
Solution - Notes Traveler iOS application.
- Via NTS_COMPANION_POLICY=noexport- Message contains a link to the Notes Traveler Companion- Only allows attachment viewing via Apple Quick Look viewers
Available Now
AusLUG 2013
Don't forget about mobile devicesNew local solution - DLP for Traveler – by Preemptive Software
● Use the security level of the message to prevent content going to the device
- Runs on the Traveler server- Very easy to install- Can use Government markings- Set and forget- Simple licensing
NEW
AusLUG 2013
Lotus Protector is a security platform of two products Lotus Protector for Mail Security is a solution that controls
all types of unwanted and confidential content Lotus Protector for Mail Encryption extends security to
Internet e-mail addresses Very easy to install, typically a self managed VM Can build very complex solutions Start simple, - target the low hanging fruit, then build up. Trial versions are available
AusLUG 2013
Questions and for more information?
ibm.com/lotus/protectoribm.com/lotus/protector/forexchangewww.preemptive.com.au/protectorwww.preemptive.com.au/markingswww.preemptive.com.au/vault