A NEW APPROACH ON INFORMATION LEAK PREVENTION IN

A NEW APPROACH ON INFORMATION LEAK PREVENTION IN CORPORATE INFORMATION SYSTEMS Shushanik Torosyan SEIHPE Dubna International University

LEAK DISTRIBUTION BY COUNTRY Number of incidents 2

LEAK DISTRIBUTION BY YEARS 3

LEAK DISTRIBUTION BY CHANNELS AND TECHNOLOGIES 4

WHY DO WE NEED DLP-DECISIONS? 1. The current concepts of information systems creation is based on confidentiality, integrity and availability and do not provide a reliable protection of information from staff actions. 2. The number of information leakage incidents in CIS carried out by insiders is rapidly growing. Therefore, there appeared a necessity to consider CIS security within the concept of ‘untrusted environment’. DLP- systems is one of the ways of this problem solution. 5

THE MAIN RESEARCH TARGETS: 1. To analyze the current mechanisms of DLP-systems operation in corporate information systems. 2. To suggest new approaches on DLP-systems development. 6

MAIN FUNCTIONS OF CURRENT DLP-DECISIONS 7

A VARIANT OF OPERATION PRINCIPLES OF DLPDECISIONS The document does not contain confidential information 8

PROACTIVE TECHNOLOGIES Proactive technologies present a set of technologies and methods the main goal of which is prevention of an ED transfer out of the security perimeter before their occurrence at the boundary of security area by means of behavioral analysis regulations of applications and employees in a CIS carrying out doubtful actions with confidential information. 9

CERTIFICATE CONTENT 1. 2. The history of creation and revision of an electronic document; 3. Document’s fingerprints; 4. The level of confidentiality of a document; 5. The acceptability of the document’s output devices; 6. Stegocontainers availability; 7. 10 Author identification; Individual parts of a document with encryption and text elements replacement for semantic meaning hiding.

A NEW APPROACH ON DLP-SYSTEM DEVELOPMENT 11

MAIN ADVANTAGES OF THE SUGGESTED DLPDECISION • The system is organized more rational: it is not time sensitive; it saves document history; it includes the system of document flow in CIS; it is easily adapted to any number of AWS; it is easily restructured at any changes of employees’ role in the security system and at changes of their duties and responsibilities in CIS. • Set up of DLP-systems is carried out automatically by means of formalized security strategy with distribution of roles and responsibilities of employees in the work of CIS. • Aggregate cost of DLP-decisions is lower by means of relaxation in the requirements of technical characteristics of servers, development of automated security strategy and role distribution. 12

MAIN ADVANTAGES OF THE SUGGESTED DLPDECISION • Decisions based on this concept are more competitive be means of document flow function, possibility for automated incident investigation while forming ED certificate, and also controllability of information leak even via uncontrolled wireless networks by means of a software robot installation. • In the suggested DLP-system, there is no possibility for security personnel to look through documents with confidential information; therefore, this decreases the possibility of information leak. • The suggested decision may find application in creating copyright support system on the global Internet and in prevention of mass compilation of information while deciding educational, scientific and other problems. • The system to a greater extent is designed for development of proactive security functions because it contains document history. 13

CONCLUSIONS 1. The analysis of the current mechanisms of DLP-systems operation in corporate information systems have been carried out. 2. A new concept of DLP-system development allowing move to a more sophisticated level of these systems’ development by means of their architecture upgrading and design of new soft robots on WKS, has been suggested. 14

THANK YOU FOR ATTENTION! Shushanik Torosyan Shusha. torosyan@gmail. com