Can Code Green's security appliance keep sensitive data from leaving your net?
Over the last decade in the US, a growing labyrinth of privacy, disclosure, and trading regulations -- for example Sarbanes-Oxely and the Health Insurance Portability and Accountability Act (otherwise known as HIPAA) has forced many companies both small and large to take a closer look at how they guard senstive information from deliberate or inadvertent leakage onto the Internet or into the wrong hands.
Over the last decade in the US, a growing labyrinth of privacy, disclosure, and trading regulations -- for example Sarbanes-Oxely and the Health Insurance Portability and Accountability Act (otherwise known as HIPAA) has forced many companies both small and large to take a closer look at how they guard senstive information from deliberate or inadvertent leakage onto the Internet or into the wrong hands.
Given the variety of paths that sensitive data can follow into the wild -- email, Web forms, FTP, instant messenging, etc -- and how quickly and easily a Pandora of data can get out of the box, never to be returned again, there now exists a crop of security solutions that attempt to keep a lid on the situation by inspecting content before it exits a company's network and comparing it to a set of policies that are typically set and enforced by lawyers and security personnel (for example, a chief security officer).
Next week, the long list of solution providers in the this security niche will be joined by Code Green Networks and it's Content Inspection or "CI" 1500 appliance (pictured below) - a solution that at bare minimum costs $25,000 but that, according to the company's founder and CEO Sreekanth Ravi, includes some patented "fingerprinting" technology that may merit your attention should you be in the market for this kind of security.
Ravi came to my home office to talk about the CI1500 and the sorts of applications like FTP, e-mail, Instant Messaging, and the Web that the appliance keeps an eye on. What should you be looking for in a solution like this? Well, it obviously depends on what your needs are. Not all of the solutions in the market are appliance-based. Some are software-based (and simply install on one of your network servers). Some of the questions that come to mind are:
What are all the apps that the solution is capable of inspecting?
What does the solution do when it encounters encrypted traffic (eg: https or encrypted ZIP files)?
Does the solution easily integrate with content management systems (where a lot of intellectual property and sensitive data are often stored)?
How scalable is the device? For example, while it is busy examining all the e-mails going in and out of an organization, will it also be able to keep up with instant messaging traffic in real-time and if not, does that mean you have to buy more of the product and at what expense?
In the interview, Ravi has answers to these and many more questions some of which are transcribed below. Here's some video from the interview.