Source Code Encryption Solution!

Source: Internet
Author: User

Enterprise-level source code encryption software is mainly to solve the software development enterprise in the development process of the code security issues, will be a software development enterprise in Suzhou, the source code encryption system using the process of problems and solutions to share, only for the relevant enterprises in the consideration of source code encryption software Reference.

The development Enterprise source code security protection needs to have the security idea and the principle product, it has the function should take the source security as the first priority. The application of software system has security, applicability and efficiency. SDC (Secretdata Cage) confidential data security system, is specifically designed to solve the source code, drawings, documents and other confidential data disclosure issues and design a set of anti-leak system.

SDC's confidential design philosophy is:

When an employee is working, an externally isolated, encrypted sandbox is created on the employee's computer, and the sandbox proactively authenticates with the server and then forms a dense workspace of server-client sandbox, where employees work in a sandbox, which:

--The confidential data on the server does not fall to the ground during use, or is encrypted on the ground.

--all development results on the employee's computer can only be stored on the server, or in a local encryption sandbox.

-The sandbox is isolated from the outside world, so it will not leak.

SDC uses state-of-the-art kernel-level deep encryption (disk filter drivers, file filtering drives, network filtering drivers, etc.) for development and design, taking into account extensibility and ease of use. The system itself integrates network authentication, file encryption, print control, program control, Internet controls, server data protection and so on, can effectively prevent foreign PC, mobile storage, CD burning, screenshots and other disclosure behavior occurs. Its main features are:

-Fully transparent encryption, do not affect staff productivity and habits;

-Can protect all file formats, including all document formats, all source code formats, sheet formats;

-Safe and stable, without destroying documents;

-Confidential confidential data only (source code, drawings) without monitoring the Internet, respecting the privacy of employees.

-External documentation audit, encryption, anti-disclosure processing;

-Outgoing mail application, audit business flow.

With the confidence of the SDC sandbox data security system, we can effectively protect confidential data.

Introduction to SDC Systems

1. SDC System Architecture

We believe that up to SDC confidential data security system sub-management, confidential end, outgoing audit server, client four part. The management side is the control center of the whole system, only one in the system, the secret end is the server that holds the confidential data, and one system is allowed to have multiple confidential servers; The outgoing audit server is an external file for audit; The client is an execution program for the anti-disclosure policy installed on the employee's PC. As required, the management side, the confidential side, the outgoing audit server can be installed on the same computer.

2. Automatic Client file encryption

SDC uses kernel-level deep-encryption technology to transparently encrypt all involved files, and truly does not differentiate between file formats and software types. As long as the secret information, regardless of Office series, PDF and other common documents, or AutoCAD and other cartographic software, or microsoftvisual Studio, Eclipse and other software development tools, are automatically encrypted, not only include source code, source drawings, and compile intermediate files and so on are automatically encrypted, the key is not to affect the local compilation, does not affect performance. It can also be easily applied for compilation that requires a submission server.

3. The secret network inside is unobstructed, isolate the foreign PC

Confidential server and enter the secret sandbox mode of the client, the formation of a dense, secure network space, within the dense network, the information transmission is transparent, smooth. Transmission methods include file sharing, application of c/s,b/s architecture, and placement of SDC before, no difference. In the secret network, IPMSG and other LAN internal chat tools can be used as usual.

4. Non-secret restricted whitelist

Under the premise of the policy, the client will allow certain programs to carry out non-confidential internet access while the confidential work is ensured without any disclosure. On the premise that the policy allows, the behavior of the Internet can include:

-Browse the Internet for necessary information inquiries;

--qq,msn, the use of fetion;

-Non-secret mail use, such as webmail or outlook/foxmail non-related to send and receive mail;

Key words: Source code security encryption, source code security encryption, source code security encryption, source code security encryption, source code security encryption, source code security encryption, source code security encryption, source code security encryption, source code security encryption,

5. External-related documents

When a business needs to take a secret file out of a dense environment, it must take the SDC's outbound review process to get it off. The SDC system provides clear text out-of-the-way.

6. Print the content log

The system default policy is not to allow printing, when you need to print, you can specify the printer to print, but the printed first page content will be recorded and sent to the server for future audit

7. Offline Client

For laptops that need to travel or take home, they can be set up as an offline client and can continue to use local data for a specified period of time. When used offline, all the secret files are still encrypted and the worker can continue to work normally. However, if the time limit is exceeded, all confidential data is automatically closed and the entire system will be in a protected state until the company is returned to the network connection server to work properly.

8. Import and export of secret files

A person in the field, on-site according to customer needs to develop debugging, debugging good Things, need to submit to the customer, if directly let decryption, unable to control the person to the other involved in the secret file copy out. So this time, travel personnel to the customer's file encryption export, and then sent back to the company, the company after the audit, decryption, go through the audit process, and then send the clear text to the customer, the formation of effective control.

Key words: Source code security encryption, source code security encryption, source code security encryption, source code security encryption, source code security encryption, source code security encryption, source code security encryption, source code security encryption, source code security encryption,

Source Code Encryption Solution!

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.