Home > Press Room
News Releases
Hitachi Software Engineering Co., Ltd.
- Self-contained security tool, ranging from system consulting and implementation to operations support -
Hitachi Software Engineering Co., Ltd. (President: Hiroyuki Kanekiyo, headquartered in Yokohama Naka-ku, abbr.: Hitachi Software) is introducing a self-contained solution designed to prevent the leakage of information assets, such as personal information and trade secrets, from enterprises and organizations by wiretapping, unauthorized takeout, theft and so on from June 10, 2002. After a chain of personal/customer information leakage accidents occurring in recent times, the demand for tougher security is heightening to prevent information leakage. The Individual Information Protection Bill is scheduled to come into effect in 2003, making it mandatory to take action against information leakage. Information leakage can be caused by theft through internal hacking and by internal leakage. According to a report compiled by U.S. SAIC, more than 80% of the crimes involving information processing systems have been committed internally (by in-house individuals). Internal leakage threatens grave dangers beyond the control of firewalls or virus checkers, such as abuse of customer data, outflow of information about products that have been developed at a huge cost investment to competitors, and so on.
In the past, Hitachi Software has released an extensive assortment of information leakage prevention packages to meet customer needs. These include:
- File-based content leakage prevention tool: Hibun/Enterprise & SAFE
- Web-based content leakage prevention tool: AssamWebGuard
- Disk encryption product: SafeBoot
- E-mail filtering product: MAILsweeper
The company's decision to integrate all these packages into a single self-contained solution and introduce it as "Hibun" to cover a broad spectrum of information leakage prevention needs, from the constructing of an information leakage prevention system to the support of its operations, came out of its recognition of the following facts:
(2) Growing customer needs seek something beyond the availability of packages to prevent information leakage.
1-1. Consulting by specialists accredited by International Standard BS7799
Before a system is built at a customer site, consultations and reviews tailored to the customer environment are carried out by specialists accredited by International Standard BS7799 on the basis of the key architecture of a solution developed from the procedural flow of analyzing and checking threats relating to protection, so that a high-precision secure system will be in place from the date of installation.
1-2. Consultations based on proven performance in the constructing of security systems for banking institutions Hitachi Software sorts packages, authentication devices and other relevant tools needed to ensure the protection of confidential information for a specific customer into an optimal solution tailored to the customer on the basis of its proven performance in the consultation on and constructing of secure systems that keep personal, corporate, and other sensitive information, such as that for banking institutions, under tight control.
1-3. Availability of consulting services for constructing an Information Security Management System (ISMS) To complement its role of building secure systems designed to prevent the leakage of confidential information, Hitachi Software offers risk analysis and policy formulation support services to implement an Information Security Management System (ISMS) that is better controlled to manage and administer the customer system.
Principal Components of the Solution
(1) Leakage caused by negligence
Threat: When PCs and media storing confidential information are lost, the information is unintentionally handed over to others. Action: Encrypt folders containing confidential information to guard against its leakage. PC disks may be encrypted in their entirety.
(2) Intentional leakage
This solution offers tricks to preclude intentional takeout of confidential information by preventing:
1. Takeout of confidential information stored on media
This solution monitors blocks writing to media, and monitors their physical takeout. Writing information to media requires authorization.
2. Takeout of information retrieved from the Web in printed form, or stored in files
This solution monitors Web displays and blocks printout and duplication of displayed information and its writing to media.
3. Leakage via e-mail
This solution monitors e-mail contents and file attachments to block any e-mail containing references to confidential information, thus preventing its outflow outside the organization.
4. Leakage by wiretapping of network lines
If a client retrieves a confidential information file available on a file server, the file is transferred via a network to that client in encrypted form to guard against the threat of wiretapping.
(3) Leakage caused by theft
Disks are encrypted in their entirety to prevent the abuse of confidential information stored on them. As an added precaution, individual files containing confidential information are individually encrypted to safeguard the information in times of unforeseeable accidents.
(4) Leakage from scrapped PCs
This solution provides features to completely overwrite the data stored on a disk to provide against recycling and also to check to see if the information has been truly erased and even to prevent unintended erasures.
3. Pricing
Product prices
Management server: Starting at JPY300,000 (Hibun Enterprise)
Client: Starting at JPY10,000 (Hibun Enterprise)
Service fees
Maintenance support (@Service24): Starting at 18% of the product price (Hibun Enterprise)
Installation support service: Starting at JPY250,000
In addition, various packaged products and service menus are available.
4. Initial delivery
June 10, 2002
5. Associated Website
http://www.hitachi-sk.co.jp/Security/
Microsoft is a registered trademark of Microsoft Corporation in the United States and other countries.
Windows is a registered trademark of Microsoft Corporation in the United States and other countries.
Windows NT is a registered trademark of Microsoft Corporation in the United States and other countries.
SafeBoot is a registered trademark of Control Break International.
MAILsweeper is a registered trademark of Contents Technologies.
Hibun is a registered trademark of Hitachi Software Engineering Co., Ltd.
A sales goal of JPY12 billion has been set for fiscal 2002 and 2003.
Key features of the core software products
- Hibun/Enterprise & SAFE [File-based content leakage prevention tool]
Control of takeout of data to removable media
Control of takeout of data by office administrators
Encryption and complication of PC internal data and shared data in a file server
Assignment of client-specific access permissions
Unified management of access information logs from servers
Automatic file encryption for mobile PCs
Creation of self-decoding confidential files for e-mail
Encryption for removal media
Data erasure from scrapped PCs
AssamWebGuard [Web-based content leakage prevention tool]
Listing of access controls to prevent the leakage of confidential information
Detailed access controls to identify who has accessed, which URLs they have accessed, and so forth Limitation on data references, including reference durations
Limitation on display, print, screen hardcopy, and save functions
SafeBoot (Disk encryption product)
Boot protection (requiring user authentication before booting the OS)
Full encryption of hard disks
Unified management of security policies from servers
Unified management PC-specific authentication logs from servers
Recovery feature (forgotten passwords, lost tokens, corrupted disks)
MAILsweeper (E-mail filtering product)
Keyword-based address, content, and file attachment check
Prevention of the leakage of sensitive information, and defamation
Prevention of spam and spoof e-mail
Limitation on file attachment types and sizes
Varied report writing features
These products may be combined with the following products and services to ensure tougher security to prevent information leakage:
- NetInsightII (port discovery) and TELstaff to detect attempted connections from unauthorized machines
- Web single sign-on
- Hacking monitoring service
- Security policy formulation support service
