Document security company Titus has released a Claims Edition of its Metadata Security product, which allows organizations to use aspects of user identity to apply access control policies.
User attributes that can be leveraged from claims include security clearance, location, time and type of connection, for example. So, if a person’s security clearance changes in his or her identity from “top secret” to “confidential,” Metadata Security Claims Edition will automatically apply new access policies the next time that user logs in, and prevent him or her from seeing any top-secret documents automatically.
The software also retrieves the IP address of the person signing in, so it can see what remote office or country the user is logging in from, and can use whatever policy is in place for remote users regarding what they can and cannot see. “Users can only see content they’re permitted to see, based on the metadata, using any number of classifications or metadata fields,” said Antonio Maio, Titus senior product manager. “With the Claims Edition, claims are retrieved at login from a trusted server, so it’s dynamic, automated and consistent.”
Similarly, a person logging in from a secure VPN should have greater access to sensitive content than someone logging in from a public WiFi, he noted.