Highlights
- nCipher secures Microsoft RMS solution employed by Gigatrust
- Customers confident in integrity of information
nCipher's netHSM is an important second line of defense for hosted services offered in a secured environment like that provided by GigaTrust.
Download in PDF »
Background
GigaTrust (www.gigatrust.com) provides trusted cross-enterprise communications solutions utilizing Microsoft Rights Management Services (RMS) technology. The GigaTrust Managed Service allows businesses to benefit from RMS technology. Providing trusted content security, it allows subscribers to share & secure email, files & attachments even after they exit the company network.
GigaTrust deployed nCipher’s netHSM because it is an important addition to the RMS technology. The netHSM enabled GigaTrust to offer enterprise customers a hosted RMS solution that meets the security needs of the most demanding customers; providing companies with an extra security layer, ensuring rightsprotected information is secure as it is disseminated within an enterprise environment.
Hardware protection
nCipher's netHSM protects the RMS cryptographic keys that permit only approved recipients to open the rightsprotected file, hence significantly reducing the risk of system compromise. The netHSM secures the critical private key inside a tamper-resistant environment validated to FIPS 140-2 Level 3, one of the most stringent standards in the IT security industry.
Frequently, customers are concerned about the security of the server keys stored on their RMS server, and the possibility of their compromise. If compromised, it is possible to gain access to the content protected by that RMS server. Even if an intruder breaches the plant security, the netHSM ensures the keys still remain protected.
nCipher’s netHSM is an important second line of defense for hosted services offered in a secured environment like that provided by GigaTrust, and is a primary line of defense against applications that may be accessible by local personnel. Even if an intruder has access to the physical server & the service administrator password, the HSM prevents access to the content keys. This boosts customer confidence as private & confidential information e.g. medical records, legal documents or confidential email will not be viewable.
Technical deployment
GigaTrust deployed a fault tolerant system using two Windows RMS servers that were integrated with Microsoft’s IIS6, SQL Server and Active directory. The system was secured by using two nCipher netHSMs to support each server.
GigaTrust has deployed two servers to meet client demands over the first year of service. As business grows, GigaTrust’s scalable architecture will allow, in a cost effective manner, the addition of servers to support a forecasted customer base of over a million users in the next three years.
Benefits
GigaTrust charges end users a monthly fee, ranging from $7 - $12 per user per month, to access the Managed Service. Customers pay to author content, but recipients may view protected content for free. The pricing model is appropriate for small to medium sized businesses who are concerned about information loss, but do not have the budget to deploy and maintain an internal RMS server. The netHSM provides these security conscious customers with the confidence to select GigaTrust to meet their security needs. In the first two months of service, GigaTrust has delivered RMS service to over 1,200 end user customers. These customers represent many Fortune 100 companies as well as several government agencies. Many of these customers are key decision makers for companies and who are interested in a full deployment of Windows Rights Management Services. GigaTrust provides these customers with a way to quickly try and learn before purchasing or implementing their own server. The nCipher netHSM gives these customers the confidence to use the system.