Sorry, you need to enable JavaScript to visit this website.
Skip to main content

Secure Objects incorporating Secure Envelopes

Version
1.5.1
Product Type
Data Protection
Product Status
Archived
Assurance Level
EAL4
Assurance Level Notes
ALC_FLR.1
Product Components
Auth Server Component: Build 1.5.1.6
All Other Components: Build 1.5.1.5
Product Description

Secure Objects incorporating Secure Envelopes is an encryption-based, access control system for protecting the confidentiality and integrity of electronic files. Secure Envelopes controls and monitors the exchange of digital files based on recipient identity, to protect against the deliberate or unintentional release of sensitive user data.

The TOE includes both client software and a central enterprise server, namely the Enterprise Envelopes Server. The client software provides the creator with a user interface that enables them to secure data files. The same user-interface allows the recipient to “open the secure envelope”. The central server provides an enterprise security management platform that provides an ongoing capability for centralised control of created envelopes, key management and object access auditing.

Once the TOE has been implemented within the enterprise any document owner can create an envelope to secure and control specified electronic files. Objects or data files secured within a generated envelope can then be controlled throughout the life of that envelope. The creator has the ability to dynamically control which recipients may open an envelope and access objects or data files after they have been released.

The TOE security model ensures the secrets needed to decrypt an envelope are never physically distributed with the secured envelope. Secured envelopes can be emailed, copied, forwarded or burned on CD as easily as any other digital document.