Perimetrix SafeSpace

Perimetrix SafeSpace is a software package which main idea completely corresponds to the classical principle of Data Centric Security (classification level (signature stamp) of electronic data defines the security policies applied to these data).

The multidimensional scheme of classification supported by Perimetrix SafeSpace allows to implement an assignment technique clear to business to data of an electronic signature stamp in the terms "confidentiality levels", "functionality", "belonging to a certain project", "geography", etc. Klassifikation of data can be executed as the user independently, in line with User-Driven-Classification approach, popular in foreign products — Managed by the User Klassifikation, and the system — depending on a classification context.

2018: Perimetrix SafeSpace of version 2.7

At the beginning of 2018 the Perimetrix company, the Russian developer information centrichnykh solutions of security (Data Centric Security), in March, 2018 released version 2.7 of the software package Perimetrix SafeSpace.

The main changes in 2.7 concerned functionality of the agency module SafeUse which supports work with the classified information at workstations running OS now Windows 10 and also in the environment server OS Windows Server 2008, 2012 and 2016. Installation on the workstation of a software agent Perimetrix does not influence work with the normal (not classified) data at all. "The confidentiality mode" joins dynamically — only for that time while there is a work with the classified information, explained in the company.

Also in response to expectations of users visualization of operation of the module SafeUse was optimized: on icons of the files containing the classified data the additional icon with the recognizable Perimetrix logo appeared. Now the employees working with confidential data can easily distinguish objects, work with which is protected by politicians of Perimetrix SafeSpace, from yet not protected. Applications launch in the protected "classified" mode is selected at the expense of an additional bright frame around an application window now that gives to the user the chance to distinguish work with the classified data from work with normal information.

The possibility of automatic classification of data at their premises in the storage location determined by rules allowing users to appoint "on the fly" granulyarno confidentiality signature stamps according to the structure of data storage admitted to the organizations became addition and simplification of work.

Access for users and annexes to the protected data is performed by the principles corresponding to model of Zero Trust Security Model — the strategy of "the minimum powers" is implemented, the tolerance levels are verified at each addressing the protected data, all events of attempt and an event of access are recorded, data are ciphered by transfer via network channels, etc.

Security policies are formulated in an allowing key: "everything is forbidden except that in an explicit form it is authorized", unambiguously describing "the protected perimeter" in which the classified data can move. Thus, Perimetrix SafeSpace allows to implement, for example, in the electronic environment the confidentiality mode with the politicians similar to rules of paper confidential document flow. At the same time the mode will work concerning digital assets of any nature, and not just documents in formats of office applications.

2011: Perimetrix SafeSpace of version 2.5

Significant changes in the new version concerned the module Cryptex which is responsible for enciphering of documents at workstations of users and data protection by transfer on communication channels. In particular, in the new version the operating procedure with cryptocontainers is simplified. Now the user can browse and edit files directly from the ciphered storage without the need for their preliminary unpacking. The operating procedure with cryptocontainers reminds work with normal archives, says Perimetrix.

Besides, support of Avest CSP cryptoprovider is added to Cryptex. According to Perimetrix, Avest CSP is the only software product for enciphering in Republic of Belarus which passed state examination according to requirements of information security in Operational analytical center at the President of Republic of Belarus.

In Perimetrix SafeSpace of version 2.5 thanks to the mechanism of synchronization with the LDAP servers setup of a system and its start in operation is simplified. Accounts of users can be unloaded in SafeSpace and afterwards are supported in current status according to data on the LDAP server.

Important innovation, according to developers, is the monitoring operation mode of a system in which there is no blocking of unauthorized actions to the classified information but only their registration. In this mode all traffic is freely redirected from workstations to network, and its check is performed out of a real-time mode. According to Perimetrix, it allows to lower a delay time and to optimize the general loading of a system.

At last, in the new version power capacity of a system increased, emphasized in the company. Thanks to optimization in the module of interception of network packets it was succeeded to achieve growth of high-speed performance and bigger stability of work under loading. "The increased power capacity means that the same configuration of the solution Perimetrix is ready to process bigger amount of data — Bobylyov Anatoly, the technical director of the company of Perimetrix explained. — It, in turn, positively affects scalability of a system".