IRM - EMC Community Network

More documents

Recommendations

Info

CertificatesCertificate authentication takes advantage of digital certificates and public key cryptography. As part of adding acertificate domain, you can add LDAP authentication and authorization capabilities to the domain. You may want todo this if your organization has users that log in to their computers using a certificate, but you also have an LDAPdirectory service defining users and groups.If you choose to authenticate users with certificates, the IRM Server uses public key cryptography to ensure theidentity of users, where public key cryptography is based on an asymmetric model of encryption.The IRM Server supports X.509 format certificates. To authenticate using a certificate, the certificate must to beavailable from the Windows certificate store on the client system. For example, if an end user adds a certificateusing the Firefox browser, the user may need to export the certificate to Internet Explorer, if the certificate is notalready in the IE store. The same is true for fob and SmartCard certificates.RSA SecurIDA SecurID is a card (token) initialized by a SecurID (RSA) server containing a number that dynamically changes atspecific intervals of time. In addition to having a username, the SecurID server assigns you a PIN. When you log into the IRM Server, you enter your passcode. This is either the PIN followed by the number that appears at thatmoment in time on the SecurID card, or the number that appears on your card after you enter the PIN on it. The IRMServer contacts the SecurID server and uses the passcode to verify your identity and that you have access to the IRMServer.Session SecuritySSL (outer)Application-level encryption (inner)Document KeyThe IRM Server grants an encryption key to a remote client based on policy when the client connects and requests it.This connection and communication is done via an encrypted communications session. This session is protectedusing two levels of encryption.When a client establishes a connection to the server, an SSL session is negotiated just like connecting to an httpssite. (SSL V3.0 for the IRM Server instances in non-FIPS mode, and TLS V1.0 (aka SSL V3.1) for IRM Serverinstances in FIPS mode.) IRM uses SSL server side authentication to authenticate the communicating parties and togenerate a session encryption key. The actual operation of SSL is beyond the scope of this document, but isdiscussed on Netscape‘s developer Web site 3 . The random session key that is generated is a 168-bit key that usesstandard encryption for the SSL tunnel. This key protects all of the client/server communications.3 Introduction to SSL - http://wp.netscape.com/eng/ssl3/Overview of Technical Architecture Page 14
One of the goals of the IRM system is to prevent direct access to decryption keys and sensitive information, evenfrom users authorized to view the content. A knowledgeable, nefarious authorized user could intercept and subvertthe SSL negotiation. Therefore, the client and server negotiate a secondary session key using EMC Documentum‘sproprietary protocol that is used to encrypt data at the application layer, effectively creating a secondary encryptiontunnel inside the SSL tunnel. This protocol uses 256-bit AES (in FIPS mode) or 128-bit RC4 (in non-FIPS mode).Server/Client HandshakingHere‘s more detail on the server/client handshaking process in different situations. IRM uses SSL authenticationonly for authenticating the IRM Server. IRM does not use mutual SSL authentication.Connecting to the IRM Server when opening a protected documentThe user attempts to open a protected document. The IRM client is invoked and determines the IRM Server host andport from the document. The client then establishes a TLS (FIPS) or SSL (non-FIPS) connection with the server. Ifall is well, the IRM Server validates the client then they negotiate the IRM protocol version that establishes whichcapabilities each supports.Initially, the client attempts to get the document key without authenticating the user. This succeeds if the document'spolicy and server restrictions allow guest access. If guest access is not allowed, the user is required to authenticate.Overview of Technical Architecture Page 15
Page 1 and 2: EMC CORPORATIONEMC Documentum Infor
Page 3 and 4: Abstract:EMC Documentum solutions f
Page 5 and 6: Users and Groups ..................
Page 7 and 8: Once the content is registered (enc
Page 9 and 10: Separation of Keys and ContentMany
Page 11 and 12: When protected content is opened in
Page 13: configured to leverage existing aut
Page 17 and 18: John Smith can only view the docume
Page 19 and 20: writing a custom program to grab th
Page 21 and 22: IRM can be configured in an active-

IRM - EMC Community Network

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?