To protect confidential information, effective identity management and access controls are necessary, but not sufficient. They must be augmented with an inspection and enforcement capability that can actually monitor network traffic, detect unauthorised attempts to transfer confidential content and intercept them.
To do this, the content protection solution must capture and store a representative signature of the content to be protected. It then compares this signature, at wireline speeds, to content being transmitted on the network. If it detects a match, it can then invoke the appropriate pre-defined security policy such as logging, quarantining and/or blocking. This methodology must scale to the enterprise level, where billions of bytes of confidential content are flowing through the network.
As shown in the figure above, Code Green Networks adds a final layer of content inspection that complements existing security controls to provide a secure, layered content protection architecture. As a last line of defence, the Code Green Networks Content Inspection (CI) Appliance™ monitors content transmissions to identify and report violations by content type, sender, recipient, policy and network protocol.
