Developers: | Solar (formerly Rostelecom-Solar) |
Date of the premiere of the system: | 2023/11/30 |
Last Release Date: | 2024/09/23 |
Branches: | Information security |
Technology: | Information Security - Authentication, PAM Privileged Access Management |
Content |
Solar DAG is an end-to-end solution for managing and controlling access to data stored and processed in an unstructured and semi-structured manner across multiple storage systems to minimize the risks of confidential information leakage.
2024
Solar DAG 1.2
On September 23, 2024, Solar Group announced the release of Solar DAG 1.2.
As reported, according to the Center for Countering Cyber Attacks Solar JSOC in 2023, 29% of infrastructure security analysis projects had access to critical, to data external systems and applications. According to experts, in some cases, confidential, sensitive and other types of unstructured, information containing are personal data stored in common. file storages
The risks of information leaks from cyber attacks increase if companies do not control access to unstructured information in different storage systems.
According to analysts of the Solar Group, the average damage from one information leak for Russian companies in 2023 amounted to about 5.5 million rubles, but such incidents as a result of deliberate actions of insiders may be several within a year.
To solve the problems of managing access to unstructured data, Solar Group consistently develops Solar DAG, a comprehensive solution for managing and controlling access to data that is stored and processed in unstructured and semi-structured on different storage systems. Up-to-date updates reflect a product strategy with a focus on optimizing access control, data integrity, and end-to-end cybersecurity. Thus, the Solar DAG 1.2 release implements integration with enterprise data warehouses MS Active Directory, Linux FS, MS SharePoint system and Solar inRights platform to cover additional sources of corporate information.
The integration of Solar DAG and MS SharePoint allows you to monitor and maintain the relevance of the data structure in filters and reports for a wide range of web portal resources. SharePoint This provides support for various events related to groups and resources, as well as the ability to classify and send MS SharePoint agent data for content analysis.
Integration with Linux FS (SMB) allows you to maintain data structures in filters and reports for various objects of this system, shares, folders and files. The system ensures that the data structure is up-to-date by activating the Hierarchy Scan function.
Solar DAG 1.2 also extends support for data coming from Microsoft Active Directory. Users can keep events associated with users, groups, and user directories up to date. The system supports the registration of various events: creating a user account, deleting, turning on/off, changing the password, moving, renaming, as well as a wide range of events for user groups and directories.
An important stage in the development of the ecosystem of access control solutions was the integration of Solar DAG with the Solar inRights platform. A secure connection feature is now available to users using a security certificate that protects and protects data transfer between systems.
In addition, an external API was developed to provide access to Solar DAG system data, including a list of data classes and account groups and subsequent access to documents corresponding to these data classes. As a result, IT and information security professionals can centrally obtain information about the permissions granted to unstructured data and control access rights, preventing possible leaks of confidential information or illegitimate use.
{{quote 'author
= noted Mikhail Nikulin, Head of Unstructured Control Technology
data of Solar Group|A request for DCAP/DAG solutions has been formed on the market, which, through integration with information systems, allow you to effectively manage access to confidential and sensitive information, ensure security and save capacity of data storage systems.}}
Solar DAG 1.2 also expanded the list of system access policies and added policies to coordinate actions to create, modify and delete user accounts, change account passwords. The system takes into account changes that allow you to configure event filtering for certain policies, such as adding or removing an account from a group.
The Configuration section allows you to manage logon-related system settings by setting a password policy, domain authentication settings, and the Welcome window. Administrators can configure idle session blocking, number of failed logins, expiration dates password, password complexity requirements, and more.
In response to customer requests, the system includes a scheduled reporting feature. Users can schedule automatic reporting and log events, including used and unused resource reports, by account, and history of changes to object permissions. The generation schedule for each report is personalized to more effectively manage the reporting processes.
The updated version of Solar DAG has also changed the user interface. All actions - create, edit, or delete objects - are now accompanied by system notifications confirming successful execution. For optimization functionality has been redesigned to address resources, accounts, scope, data classes. You can now filter by criticality type and select the appropriate objects in the system.
Inclusion in the register of Russian programs
The Ministry of Digital Development of Russia has enter into the unified register of Russian programs a multifunctional product for protecting unstructured data Solar DAG. The solution was developed by the Solar Group, which announced this on July 31, 2024.
Solar Group introduced Solar DAG in November 2023 as a comprehensive multifunctional solution that provides a unified approach to structuring, monitoring the use and storage of confidential information. As of July 2024, the key advantages of the product are high performance - the ability to stream up to 100 million events on storage systems per day, high speed of content analysis - up to 1.5 TB per day, as well as work in geodistributed mode.
The current capabilities of the product close the main tasks of customers in the field of protecting confidential data from cyber threats. The ability to integrate Solar DAG with business intelligence (BI) and access control systems, such as Solar inRights, allows you to implement an integrated approach to control access to unstructured data and reduce the risk of confidential information leakage.
The volume of unstructured data stored in organizations is growing in multiples. The international analytical company ITC predicts that by 2025 the volume of data will grow to 175 zettabytes and most of it will be unstructured. The high performance of Solar DAG allows you to work with a large amount of data and control the actions of users. The inclusion of the solution in the register of domestic software confirms its high reliability in ensuring the comprehensive protection of confidential data, including unstructured, as well as complete import independence, - said Dmitry Bondar, director of the access management products development department of Solar Group. |
Solar DAG 1.1
On May 20, 2024, representatives of Solar Group announced the release of the Solar DAG 1.1 unstructured data control system, equipped with functions to optimize the management of unstructured data in organizations. Key developments in this release are focused on optimizing storage resources, optimizing data quality, and improving information security.
As reported, the Solar DAG product was first introduced to the market in November 2023 as a universal tool for the control, storage and use of confidential information.
One of the key changes that improve the efficiency of the system was the enrichment of the information systems event log with events from Active Directory (AD). The updated Solar DAG system maintains the relevance of the data structure in filters and reports of various AD objects. This feature supports logging events such as creating, deleting, enabling, disabling, and modifying user accounts, as well as events associated with groups and directories. This enhancement allows you to manage Active Directory objects with greater accuracy and control.
This version of Solar DAG supports management of classification rules based on regular expressions and keywords. Users can create classification rules using keywords, phrases, templates, and previously registered rules, and develop rules based on regular expressions. This function allows you to more accurately classify and organize data.
In addition to the previously mentioned developments, the updated version also adds an updated section with data source parameters and their hierarchy, which optimizes the process of registering sources (file servers, directories, etc.), and also allows you to control the depth and scanning mode with the ability to display the hierarchy resources for all sources. A modification of the Windows FS agent has appeared: added functions for transferring checksums, file sizes and information about inheritance attributes. Support for Windows Server 2008r2 is implemented, and event logging based on the file system log (NTFS) is now supported. A mechanism for managing "scopes" has been implemented through the system menu to delimit access to information.
In the updated version, the system has been supplemented with three reports that help users optimize methods of managing unstructured data, make more informed decisions on information storage, optimize efficiency, performance and cybersecurity.
The Unused Resources report allows system users to identify resources that have not been used for a period of time and then manage them. This feature allows the business to optimize operating costs by reducing the cost of storing unnecessary information, and improving security by identifying potential risks associated with uncontrolled data.
By reporting duplicate files, Solar DAG administrators can identify duplicates in a company's file resources without overflowing them. This enables companies to optimize storage resources, optimize data management consistency and quality, and manage versioning.
The disabled inheritance report defines directories that have unique file and folder access rights granted directly, without regard to hierarchical structure, inheritance, or specific rights and access group policies. By addressing the issue of broken inheritance, organizations can strengthen information security, reduce the risks associated with bypassing policies, and ensure comprehensive control over access rights.
Redesign and expand information in basic system widgets, implement pagination for step-by-step loading on portal pages, add various calendar modes, optimize format, report presentation, and more.
{{quote 'author
= explained Dmitry Bondar, Director of inRights Department of Solar Group|Solar DAG solution is included in the product portfolio of access management of Solar Group, where we have accumulated various practices and technologies to protect confidential data from cyber threats. In particular, Solar inRights allows
automate user identification, and Solar SafeInspect manages privileged access.}}
2023: Solar DAG Solution Presentation
Solar Group of Companies on November 30, 2023 announced the launch of the multifunctional product Solar DAG. The solution offers the market a unified approach to controlling the storage and use of confidential information.
According to research by Gartner, 80% of data stored in organizations is unstructured. Unlike an ordered set of structured information in databases, unstructured is stored in a format that is very difficult to control and manage using any standard tools and processes. In addition, 70% of employees in organizations have access to data that they should not have. Inefficient data management leads to a significant increase in financial and reputational risks to the business.
Managing access to unstructured assets is a pressing issue for every large company. Solar DAG helps you identify critical and valuable information in a common data array, which allows you to focus on protecting your organization's internal security services.
Solar DAG provides control over all activities that potentially carry the risk of data misuse. The solution has high performance and is focused on Enterprise customers. Up to 100 million events per day on storage and up to 1.5 TB per day of content analysis can be streamed, as well as the speed of reporting queries that enable you to work with a large amount of information and control the actions of a large number of organization employees.
Enterprises with a developed branch network will be able to control file servers throughout the network thanks to the support of work in a geodistributed mode. And within the framework of centralized use of the Solar DAG system, it allows you to configure the scope for administrators of each branch separately, which eliminates the possibility of unauthorized access to information and statistics that are beyond its responsibility.
The solutions of the product portfolio of access control of Solar Group allow us to already provide customers with effective protection of confidential data from cyber threats. Our best practices and technologies have already been implemented and help Solar inRights automate user identification and Solar SafeInspect manage privileged access. The integration of existing platforms with Solar DAG will strengthen access control by increasing the level of confidentiality of unstructured data, as well as protect them from leakage, "said Dmitry Bondar, director of the inRights department of Solar Group. |