Government Computer News
Fighting the enemy within
Workshare Protect keeps good people from doing bad things with agency data
Digg
De.licio.us
Slashdot
Technorati
Image:
YOU SENT WHAT? Workshare’s dashboard shows network admins and security officers what data breaches have occurred and what was done about them.
GCN Lab Review
Workshare Protect Enterprise Suite
Performance: B
Features: A
Value: A-
Price: Starts at $30 per seat
Reviewer’s comments: Other than a few minor holes, Workshare can prevent users from sending confidential information to unauthorized recipients accidentally or on purpose. Administration is surprisingly easy, and the price is hard to beat.
Contact: Workshare Inc., San Francisco, (415) 293-9809, www.workshare.com
Most network defenses are pointed toward the outside world and assume everything within the network is safe. During the Spanish Civil War, nationalist Gen. Emilio Mola was asked how he expected to besiege Madrid with only four columns of soldiers. He answered he had a secret fifth column of supporters within the city. There may not be subversive elements your agency, but the point is that most security breaches are accidental and come from the inside, and government IT shops need to address them.
The Workshare Protect Enterprise Suite is network security that looks at what’s going on inside a network to help stop both purposeful and accidental information leaks. In addition, it can educate users when they’re violating policy so they learn from their mistakes and don’t send sensitive data outside the agency.
Installing the program is not difficult, though it requires a bit of sneaker work by the network admin. You need to install the software on your policy server first, then point each client back to the server for installation. After that, the clients will automatically contact the server at regular intervals to check for policy or program updates. You need about 50MB of free space on each client machine.
Highly restrictive
When first installed, the program’s default policy is highly restrictive. For example, you can’t send a Word document to an outside source. Administrators will need to delve into the program and configure it to match their individual security policies. Workshare can scan any document created with Microsoft Office, including Excel, Word and PowerPoint. It also works with Lotus Notes 6.0 or higher and, of course, with Microsoft Outlook.
The interface is easy to use and highly detailed. For example, you could allow the word “salary” within a Word document, but flag it if found inside a cell on an Excel spreadsheet. And because most federal agencies put classification levels in the header, you can set up policies based on the individual document type as defined by the header. Any file listed as top secret may have all routing possibilities disabled, for example, while lesser classified information might be sent to certain people but not outside the agency. This level of detail is surprisingly easy to configure, either from scratch or by modifying the default policy.
![1105 Government Information Group [happiness]](/images/1105logo_website.gif "Government Computer News [happiness]")
© 1996-2008 1105 Media, Inc. All Rights Reserved.
