Microsoft Rights Management Services (RMS)

Microsoft Windows Rights Management Services (RMS) is the additional service for Windows Server 2003 (R2) in editions Standard, Enterprise, Web and Datacenter helping to prevent the unauthorized addressing electronic information in an on-line and standalone mode in borders of the corporate firewall and behind its framework.

RMS expands the strategy of security of the enterprise, protecting information using strict usage policies which accompany these data where they would not get. The employees working with information can accurately define how the addressee can use the acquired information. In particular, it is possible to define who can open, edit, readdress and/or execute other transactions with this information. The organizations can create own templates the politician of access isolation, such as "Confidential Only for reading". These templates can be applied to such documents as strategic business plans, financial statements, specifications of products, the information about clients and e-mails directly.

Restriction of browse mode and use

Enciphering limits audience of viewing data – only authorized users will be able to do it Strict and permanent politicians of access isolation to information are used Politicians of access isolation manage use of information The author of information himself applies necessary policy using the application supporting RMS technology Data on restriction of the rights are stored in the document at the file system level All protection works in the interactive and standalone mode, in borders of the corporate firewall and behind its framework

Reliability of the solution

The built-in opportunities and the Windows Server 2003 utilities are used Industrial technologies of data protection — enciphering, certificates based on the XrML standard, authentication Flexible technology with opportunities of individual completion The tool kit of RMS SDK developer supports the integrated SDK for clients and the RMS servers Protection of the classified information is provided by any application with support of RMS Allows third-party developers of information technologies to integrate information security tools into the products for creation of universal platform solutions

Advantages

Protection of the classified information against unauthorized use Continuous data protection where this information would not get is provided The minimum amount of works on administration and ease of operation On a centralized basis the defined and managed policies of usage of information are fully implemented for data in electronic form A system conducts audit of all information with limited access The offered flexible technology is convenient in administration and well gives in to expansion of functions Implementation of industry standards: XrML and enciphering using a 128-bit algorithm of AES The solution, ready to work, can be implemented without changes in environments where different releases of Microsoft Office 2003 or 2007 are used The IE browser supports RMS technology using a superstructure of Rights Management Add-on (RMA) and serves as a basic preview player of information with limited access

Integration with other products of Microsoft

The service RMS is an additional tool for Windows Server 2003. Also the directory service of the Active Directory and a SQL database are necessary for its support. At the level of desktop computers for creation or viewing contents with access rights restriction the application supporting RMS is demanded. The first such application offered by Microsoft corporation is Office 2003. Creation or viewing documents of Office, work sheets, the presentations and e-mail messages with access rights restriction requires Office 2003 Professional Editions. Microsoft Office of 2003 Standard Editions gives to users the chance to browse documents of Office with access rights restriction, but does not allow to create them.

Microsoft RMS allows to protect information not only in corporate network, but also the data sent out of its limits.