Limitations on Windows file servers: Digital Rights Management
Written by Judy
File Servers can be a conundrum to maintain security for depending on the size of your business and the number of employees you have. One of the main reasons businesses should consider a solution for their file server is due to the risks that it carries such as internal data leakage and overall data breaches. With the level of awareness for one’s privacy and protection of information (we can all thank Edward Snowden for that), it’s safe to say that current file server security lacks several features that prevent compromised data. Here are some things to consider when choosing a file server security solution.
Windows file servers for example, provide a security feature which allows administrators to register users to specific groups and folders in “Read-only” or “Read and Write” mode. But what stops registered users from copying a file out of the server? There are some security limitations to Windows file servers and this leaves your business with a big security risk. If an administrator has a temporary employee that needs access to some documents stored in “Folder A,” that employee would have access to the data like the full time employees. However, there is no digital rights management for the data stored in the file server, enabling the temporary employee to copy, print, or screen capture a file from the server. This is a huge security risk that many companies face today where DRM policies are absolutely needed but rarely supplied for file servers. If that temporary worker made off with important documents that could compromise the reputation of the company and its customers, it can cause irreparable damage to a company’s image. I mean, think about what happened with the NSA and how our views on the government since have not been the same.
The best way to combat this risk is to find a solution that alleviates the security limitations of the windows file server. By being able to apply user-based DRM policy settings for just the temporary employee (which denies copy or printing rights), administrators can rest easy knowing that the temporary employee can access and edit the files but cannot copy the files out of the server, which is all that is necessary to do their jobs. Meanwhile, the other employees can continue working as they normally do.