Network Appliance, Inc., a leading provider of enterprise network storage solutions, and Decru, Inc., a leader in networked storage security, unveiled a storage security option which integrates with IBM's electronic records management solution, setting a new bar for secure records management. The option consists of Network Appliance storage system and Decru DataFort storage security appliance, specially configured for IBM's electronic records management software solution. The secure storage option was demonstrated to the United States Department of Defense Joint Interoperability Test Command (JITC) during certification testing of IBM's DB2 Records Manager Enabler for Content Manager V8.2. Tests were successfully concluded October 27, 2003. According to the JITC summary certification test report, the demonstration showed:

  • IBM DB2 Records Manager Enabler for Content Manager was authorized to return data stored on the Network Appliance storage system to the user in its native format, which was proven to be identical to the original file
  • The Decru DataFort security appliance controlled views to IBM DB2 Content Manager content such that unauthorized access would only result in encrypted data
  • After performing a destroy action in IBM DB2 Records Manager, the encryption key which allows decryption of the content was destroyed, making recovery of the content impossible.

IBM's US DoD 5015.2 certified e-records solution can now utilize the full capabilities of NetApp storage systems and Decru DataFort storage security appliances. The joint solution enables government and business users to fully comply with DoD 5015.2 requirements, while at the same time meeting stringent data protection and electronic shredding requirements.
The DoD 5015.2-STD certification is a records management application (RMA) test with rigorous requirements for systematic control of the creation, maintenance, use, reproduction, and deletion of records. With increasing regulatory pressures and stockholder scrutiny, companies need solutions that can help them electronically capture, preserve, manage, protect, and ultimately dispose of information assets. Many U.S. government agencies, and the vendors who supply them with software solutions, are seeking compliance with DoD 5015.2-STD regulations. Full details of all DoD 5015.2-STD certified solutions can be accessed online at http://jitc.fhu.disa.mil/recmgt/register.htm.

"Governmental organizations as well as regulated enterprise users are demanding integrated, secure and compliant solutions for managing their most valuable data assets. The NetApp-Decru option for IBM's DoD 5015.2-STD-certified records solution addresses all of these requirements in a certified, tested package," said Peter Gerr, analyst at the Enterprise Storage Group. "ESG believes that encryption of data at rest and in transit along with secure electronic file shredding are becoming must-have features for a wider range of applications."

The NetApp-Decru-IBM solution provides a robust platform for integrated management of electronic and physical information assets. For organizations managing sensitive or classified data, security for stored data and file shredding presents difficult information assurance challenges. Over the past decade, storage has been increasingly consolidated and replicated across networked storage systems; this trend has enabled significant scalability and efficiency gains but has also created serious vulnerabilities. Additionally, new data forensics techniques have made it nearly impossible to completely erase data stored in cleartext format from hard drives, further multiplying the risk of data exposure. The NetApp-Decru option uniquely addresses these serious security issues using strong AES-256 storage encryption and Decru CryptoShred" for secure file shredding.

Customers can leverage the NetApp-Decru option to rapidly deploy a complete, certified e-records solution with secure storage. In a typical deployment, IBM DB2 Records Manager and DB2 Content Manager software is mounted to Decru DataFort storage security appliances. DataFort secures data transmission and storage at wire speed using secure access controls, authentication, AES-256 storage encryption and cryptographically signed logging. DataFort then mounts NetApp storage systems, and writes encrypted data onto disk with file metadata intact. NetApp storage in turn provides ease of management and scalability to handle rapidly evolving storage needs. The solution can be deployed transparently with zero desktop footprint for users, insuring minimal disruption to existing workflow and infrastructure.

Because sensitive cleartext data is never written to disk, a wide variety of electronic and physical attacks on stored data are neutralized. Decru CryptoShred features enable users to permanently delete primary and secondary copies of data by securely deleting encryption keys. All copies of expired data are instantly destroyed regardless of physical location, and even sophisticated laboratory techniques cannot access the original cleartext data.

Register or login for access to this item and much more

All Information Management content is archived after seven days.

Community members receive:
  • All recent and archived articles
  • Conference offers and updates
  • A full menu of enewsletter options
  • Web seminars, white papers, ebooks

Don't have an account? Register for Free Unlimited Access