IC L10: Seamless Encryption of Data Sync'ing to Dropbox...
Transcript of IC L10: Seamless Encryption of Data Sync'ing to Dropbox...
1
IC L10: Seamless Encryption of Data Sync'ing to Dropbox Using Symantec File Share Encryption Jeremy Tully, Douglas Rivers, Matt Dawdy Technical Field Enablement
SYMANTEC VISION 2013
Is your Enterprise Data secure in the Cloud?
Dropbox User uploads sensitive data to cloud
Corporate sensitive data is accessed and stored to non-enterprise mobile devices and PCs
CORPORATE DATA
Home
CORPORATE DATA
CORPORATE DATA
Dropbox user
Corporate Network
2
SYMANTEC VISION 2013
Dropbox Cloud Protection
• Automatic encryption
• Seamless access
– Managed Windows machines
– iOS devices
• Centralized management of policies
3
SYMANTEC VISION 2013
Requirements
Symantec Encryption iOS
Symantec Management Server 3.3 Symantec iOS File Share App for iPod, iPhone, and iPad
Symantec Encryption Desktop 10.3 (with File Share enabled)
*The Dropbox native app is not required.
Windows Client
Dropbox application for Windows
4
Architecture
5
SYMANTEC VISION 2013
Dropbox Encryption Policy
Home
Dropbox user
with File Share
Corporate Network
SEMS
Symantec Encryption Management Server manages File Share Dropbox Encryption Policy for PC and iOS devices
Symantec iOS
File Share App
VPN
6
SYMANTEC VISION 2013
Symantec Encryption Desktop
Architecture Overview
• Symantec Encryption Desktop and Dropbox
File Share Daemon
File Share Library
Dropbox Sync Application
[Native] Other
Desktop components
(PGP SDK, USP etc)
Local File-system
SEMS
Dropbox
Folder
Pull the Dropbox
policies Upload the
encrypted file on
cloud
Locate the Dropbox folder
and apply the encryption
policy
Windows Box
7
SYMANTEC VISION 2013
Symantec iOS File Share
Architecture Overview (cont’d)
• Symantec iOS File Share app (in App Store)
App core and UI
File Share Library
PGP SDK
Local cache
SEMS Dropbox policies
and keys
iOS device
USP Library Dropbox SDK
Quicklook
Authenticate
Dropbox account
and get files
Dropbox Sync App [Native] Auth
Dropbox SDK
uses Native app
for authentication,
if present.
Firewall
8
SYMANTEC VISION 2013
End to End Security of Information Stored in the Cloud
Home
Dropbox user
with File Share
Corporate Network
CORPORATE DATA
CORPORATE DATA
Symantec iOS
File Share App
Symantec File Share encrypts Dropbox data before it is uploaded to the cloud
User can not view encrypted data on unmanaged computer (without File Share)
@#%@#%#$WERSASFSFSDFSDGSD
SEMS
File Share provides end to end Data Encryption
9
SYMANTEC VISION 2013
Use Cases
• Core Encryption management for Dropbox files
– Automatic encryption of new files when copied to Dropbox folder
– Automatic encryption of existing Dropbox files when modified
– Automatic re-encryption of Dropbox files and folders on policy change
– Allow manual encryption of Dropbox files
– Note: Existing Dropbox files are not encrypted
• Encryption Policy Enforcement
– Prevent manual decryption/re-encryption of Dropbox files via Explorer or command line
10
Symantec Encryption Education Offerings
11
SYMANTEC VISION 2013
Symantec Encryption Product Training
Optimize product functionality
Shorten your implementations and spend less time with support
Leverage your investment in Symantec technology to the fullest
Learn at your convenience via the web
For more information on Encryption training offerings, visit: http://education.symantec.com
SYMANTEC VISION 2013
Symantec Education offers training to help you and your team get the most from your Symantec investment…
Course Duration Delivery
Symantec Encryption products Administration course
5 day Instructor-Led Training or Virtual Academy
Symantec Encryption products Administration Web-based training
~4 hours •Self-Paced annual Subscription
Unsure if your team needs training? Symantec Education offers a free skills assessment on Symantec PGP Universal Server for individuals or teams to help you identify strengths and skills gaps.
Go to www.symantec.com/assess or contact your Symantec Education Specialist today to set up a free group assessment.
13
Training for Encryption products
Thank you!
Copyright © 2012 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. This document is provided for informational purposes only and is not intended as advertising. All warranties relating to the information in this document, either express or implied, are disclaimed to the maximum extent allowed by law. The information in this document is subject to change without notice.
14