The Microsoft DRM can prohibit someone from copying, pasting, forwarding,
printing etc... the contents. You are right in that you have to trust the
people. It may only keep the honest folks honest but that is still a step in
the right direction and if someone takes time to carry their laptop to a
copier to get a copy or if they take a snapshot with the camera built-in to
their phone then they have clearly crossed the line when a message states
something like: "DO NOT FORWARD. Recipients can read this message but may
not forward, print or copy content." It becomes much harder to say, "I made
a mistake." That allows your acceptable use or personnel policy to kick in
and fire the employee.
Glenn
Security Solutions Specialist
Microsoft.
----- Original Message -----
From: "Jimi Thompson" <jimi.thompson@gmail.com>
To: "Thompson, Tichard" <tichard.thompson@pharma.com>
Cc: "Lists" <sakaba@alexandria.cc>; <focus-ms@securityfocus.com>
Sent: Saturday, November 20, 2004 1:23 AM
Subject: Re: Microsoft rights management server alternatives
The DRM stuff is all a seriously bad joke that's been played out on
management. You still have to TRUST the people that work there. If I
can display it on my screen, no matter what else fails I can get my
nifty camera and take a photograph of the document or whatever I'm not
supposed to be able to pass around. If I can play it through my
speakers or headphones, I can whip out my trusty old casette recorder
and tape it. Where's your DRM then? Neither of these are
particularly high-tech approaches and are well within the reach of the
average schmoe.
Further more, if I have sufficient rights to open a document, let say
that I copy and paste from the contents of your DRM document into a
new document. How do you track the rights to that? It's better to
be loyal to your employees so that they are loyal to the company and
don't want to sell you out to begin with. More software isn't going
to fix that.
2 cents,
On Thu, 18 Nov 2004 14:06:11 -0500, Thompson, Tichard
<tichard.thompson@pharma.com> wrote:
Checkout LiquidMachines which is a stand alone product and also
works with an existing RMS infrastructure. Also look at Authentica.
Their solutions are a lot better as well as being a lot more expensive.
T.J CISSP
-----Original Message-----
From: Lists [mailto:sakaba@alexandria.cc]
Sent: Friday, November 12, 2004 7:30 PM
To: <focus-ms@securityfocus.com> <focus-ms@securityfocus.com>
Subject: Microsoft rights management server alternatives
Hi everyone,
I am looking into rolling out a solution like microsoft rights server
that can encrypt files and assign decrypt rights. I know of Hibun in
Japan as well by Hitachi and was wondering if anyone was using anything
else.
Regards,
sakaba
------------------------------------------------------------------------
---
------------------------------------------------------------------------
---
---------------------------------------------------------------------------
---------------------------------------------------------------------------
--
Thanks,
Jimi
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
