Risk Management is Not Sufficient

Telecommuting enables user productivity, but Enterprises need to balance those efficiencies against the risks of data loss, data leakage and data compromise. The lack of effective data protection products and policies for the PC, coupled with an inability to provide a trusted collaboration capability, directly impact the ability of companies to leverage their most important asset, information. Existing products are bolt-on, perimeter based solutions that only solve parts of the problem, and often require self-induced security breaches to install and maintain.

In today’s enterprise, the focus is on risk management, to minimize the impact of data loss, leakage and compromise. Every week some Company, Agency or Bank is exposed for having a data security or privacy incident. Those incidents cost millions of dollars. Even worse is the loss of trust in the institution. This can only mean one thing, that risk management is just not working.

The Move to Risk Elimination

What is needed is an agile solution for the mobile workforce that eliminates these risks to the data. Products available today address limited pieces of this puzzle. These point solutions are cumbersome and unwieldy to use, and they are even more difficult to maintain or scale. In many enterprises these installed products are being proactively bypassed or disabled to enable productivity. This leads to a false sense of security, wasted budget resources and increased risk to both the user and the enterprise.

Security First Corp. understands these risks, and provides a game-changing Data-Centric product for storage security. Security is built into the data and is no longer an afterthought. The enterprise now has the ability to implement a risk elimination strategy.

Game-Changing Technology

SPxClient guarantees confidentiality, availability, and integrity of PC stored data. Using a patented cryptographic splitting technology, SPxClient weaves security into the data at the bit level, instead of bolting-it-on to files or hardware. This easy to use technology is transparent to the user, protecting any type of data-at-rest. A lost or stolen device’s data remains secure and undecipherable for the life of the universe. The data splitting process simultaneously enables data survivability, so the user can continue to work. Data is safe anywhere people work, all the time.

Leveraging the SecureParser Extended™ Core

Provided as a thin software application, SPxClient runs at the kernel level in the background of any Windows or Linux enabled PC and is transparent to the user. SPxClient uses the patented, FIPS 140-2 certified, Suite B compliant, SecureParser Extended (SPx) technology as its core. SPx cryptographically splits the data; a process that includes AES 256 encryption, random bit splitting, integrity checking and then re-encrypting the split shares. Four or more encrypted shares are created and SPxClient stores them in separate locations (on any local or network addressable storage). Share file names can be optionally hidden by hashing them.

SPxClient simultaneously secures the data while providing robust data survivability from disasters because it uses M of N fault tolerance. (e.g. Only 2 of 4 parsed shares might be needed to rebuild the data.) If a hard drive’s sector fails, or a USB device is lost, or a remote storage location is down, files can still be accessed and recovered. If a failed drive’s share is later recovered, or a share is stolen, the data remains completely safe and protected since any single parsed share contains no forensically discernable information. A parsed share cannot be reconstituted, decrypted, hacked or recovered without first having the corresponding second share, the key, correct authentication and the SPxClient enabled PC.

If user PC is lost, stolen or destroyed, the data on board remains secure while the other split shares remain available for the authorized user to continue to work!

Enabling Secure Use of Cloud Storage

SPxClient encrypts and splits the data into 4 or more shares. These split shares can be sent to any addressable storage location. A typical use case might have one share stored on the PC, one share stored on a removable USB device, and two shares stored on Networked Storage or Cloud storage. Each share contains cryptographically split and encrypted data, so data can be stored anywhere without risk of compromise. This opens up limitless storage possibilities and a way to leverage growing Cloud offerings.

Enterprise Level Control

SPxClient is offered in several versions based on varying Personal, Professional and Enterprise user needs. SPxClient Enterprise version is extensible across an Enterprise and has many additional features that expand its value. These include centralized control of remote data via use of a control share, centralized key management, enterprise health check and synchronous data protection. SPxClient Enterprise can be deployed and managed directly from and by a remote System Administrator. If your organization is ready to move from Loss Mitigation to Risk Elimination, then SPxClient Enterprise is the answer.

Benefits of SPxClient

SPxClient is a low price, high value solution that eliminates the risk of data loss and its associated costs (both financial and reputation). The PC user is assured their data is private, is protected, and can only be accessed with their personal key and private credentials. Lose a PC and your data is safe. The enterprise gains policy control over and lifetime security of their remote data. Disaster recovery is built-in, saving the cost of replacing lost data and the cost of additional hardware infrastructure. If your device is destroyed or lost, your data is safe from exploitation and your enterprise can rebuild the data on the fly. System Administrators gain information about the health and safety of their users data and can counter or eliminate most of the cyber crime associated with insider threats. SPxClient eliminates risk to the data, focusing risk mitigation strategies where they can be most effective and successful.

Summary

SPxClient is a complete data protection, data control and data recovery product that eliminates risk associated with losing data stored in mobile PC devices. Stop ineffective risk mitigation policies and start eliminating risk completely. Get rid of the costs associated with lost data and reduce the costs of supporting remote users. SPxClient can be implemented at the personal level or seamlessly integrated into your Enterprise, offering enhanced centralized control. This game-changing data-centric product is cost effective and licensable today. For more information about SPxClient please contact Security First Corp.

Back to top of page >