Xerox Unveils Technology That Blocks Access to Sensitive Data in Documents to Prevent Security Leaks
 |
|
| |
The News: Xerox and PARC have developed technologies that control access to sensitive information and make it possible to remove data for readers who don't have a "need to know." |
| |
The Context: Organizations such as financial services and mortgage businesses depend on easy access to digital documents. Digitized content can be printed, copied, forwarded and reused, making it hard to control information and comply with privacy restrictions. |
| |
The Innovation: The technology includes a detection software tool that uses content analysis and an intelligent user interface to easily protect sensitive information. It can encrypt only the sensitive sections or paragraphs of a document, a capability previously not available. |
Xerox Press Release, October 15, 2007
Excerpts from the release:
...demonstrated for the first time a new software technology that will greatly increase accuracy while reducing the time needed to remove sensitive or confidential material from documents.
Dubbed "Intelligent Redaction," the new software automates the process of removing confidential information from any document. Once users have identified the information they want to protect, the software automatically redacts all references to this information throughout the document. After information has been classified, that same information will be automatically redacted if it appears in other documents. This "intelligence" ensures a consistent level of security, saves time and increases redaction accuracy.
The research aligns with Xerox's goal of developing smarter documents to make information-based work easier, more efficient and more effective.
Still in development, the innovative technology combines PARC's security and privacy, natural language, and user interface design expertise to develop semi-automated ways to identify and protect sensitive content. The intelligent redaction technology also creates a behind-the-scenes audit trail should the document or information be compromised...
"The tools available today can't provide sufficient content analysis and security because it's difficult to determine what is sensitive," according to Jessica Staddon, manager of the security research area at PARC. "In a large organization the level of sensitivity changes depending on the person accessing the document. The sheer numbers of documents to be tracked and sorted further complicates the problem."
Traditional redaction has two big drawbacks. It requires a labor-intensive manual process to identify sections to censor, and management of different versions of the same document is cumbersome and difficult. PARC's intelligent redaction removes these obstacles. The user interface makes it easy for the document owner or author to identify the sensitive data. Then the security tools protect the sensitive information by allowing the document itself to hide or expose information or data within it, based on who has been granted access.
|
