110 likes | 312 Views
Rights Management Services (RMS). Matt Green – Solution Architect Cloud Collaboration and Communications Netrix, LLC. Compliance and Security Considerations. Datacenter Security Independent auditing Real time issue tracking and root cause analysis BitLocker for hardware encryption
E N D
Rights Management Services (RMS) Matt Green – Solution Architect Cloud Collaboration and Communications Netrix, LLC
Compliance and Security Considerations • Datacenter Security • Independent auditing • Real time issue tracking and root cause analysis • BitLocker for hardware encryption • Encryption of data at rest and in transit • Data Loss Prevention • Legal Hold and eDiscovery • Rights Management Services (RMS)
Automated operations Office 365 datacenter network Microsoft corporate network Lock box: Role based access control Grants temporary privilege O365 Adminrequests access Grants least privilege required to complete task. Verify eligibility by checking if Background Check Completed Fingerprinting Completed Security Training Completed
Advanced encryption using RMS Data protection in motion Data protection in motion Information can be protected with RMS at rest or in motion Data protection at rest Data protection at rest Data protection at rest Data protection at rest
User access • Integrated with Active Directory, Azure Active Directory, and Active Directory Federation Services • Can share with external businesses • Enables additional authentication mechanisms: • Two-factor authentication – including phone-based 2FA • Client-based access control based on devices/locations • Role-based access control
Template Types Do Not Forward – specific to email Company Confidential - consumers of the content are allowed all rights needed to work with and modify the content but are not permitted to copy and print the content Company Confidential View Only - consumers of the content are enabled to only read or view the content but are not permitted to modify the content in any way from its original published form
Potential Hurdles (Today…) External user access Two Factor Authentication and RMS Templates Template customization needs End user training Malicious behavior
Upcoming Features Support for external “individual user” domains, such as Google IDs, Live accounts, etc. Custom templates for RMS for Azure AD (AAD)