IPC - Information Protection and Control - Appliance

What is Information Protection and Control (IPC)?

IPC (English Information Protection and Control) is a generic name for technology to protect confidential information from internal threats.

IPC apparel solutions are designed to prevent various types of information leaks, corporate espionage, and business intelligence. IPC combines two main technologies: media encryption and control of technical channels of information leakage (Data Loss Prevention - DLP). Also, the functionality of IPC systems may include systems of protection against unauthorized access (unauthorized access).

What are the objectives of IPC class systems?

• preventing the transfer of confidential information beyond the corporate information system;
• prevention of outside transmission of not only confidential but also other undesirable information (offensive expressions, spam, eroticism, excessive amounts of data, etc.);
• preventing the transmission of unwanted information not only from inside to outside but also from outside to inside the organization’s information system;
• preventing employees from using the Internet and network resources for personal purposes;
• spam protection;
• virus protection;
• optimization of channel loading, reduction of inappropriate traffic;
• accounting of working hours and presence at the workplace;
• tracking the reliability of employees, their political views, beliefs, collecting dirt;
• archiving information in case of accidental deletion or damage to the original;
• protection against accidental or intentional violation of internal standards;
• ensuring compliance with standards in the field of information security and current legislation.

Why is DLP technology used in IPC?

IPC DLP technology supports monitoring of the following technical channels for confidential information leakage:

• corporate email;
• webmail;
• social networks and blogs;
• file-sharing networks;
• forums and other Internet resources, including those made using AJAX technology;
• instant messaging tools (ICQ, Mail.Ru Agent, Skype, AOL AIM, Google Talk, Yahoo Messenger, MSN Messenger, etc.);
• P2P clients;
• peripheral devices (USB, LPT, COM, WiFi, Bluetooth, etc.);
• local and network printers.

DLP technologies in IPC support control, including the following communication protocols:

• FTP;
• FTP over HTTP;
• FTPS;
• HTTP;
• HTTPS (SSL);
• NNTP;
• POP3;
• SMTP.

What information protection facilities does IPC technology include?

IPC technology includes the ability to encrypt information at all key points in the network. The objects of information security are:

• Server hard drives;
• SAN;
• NAS;
• Magnetic tapes;
• CD/DVD/Blue-ray discs;
• Personal computers (including laptops);
• External devices.

IPC technologies use various plug-in cryptographic modules, including the most efficient algorithms DES, Triple DES, RC5, RC6, AES, XTS-AES. The most used algorithms in IPC solutions are RC5 and AES, the effectiveness of which can be tested on the project [distributed.net]. They are most effective for solving the problems of encrypting data of large amounts of data on server storages and backups.