Voltage SecureFile

Voltage SecureFile enables the protection of individual files, encrypting them such that only those granted access rights to the files can view them (which they do via their own SecureFile component). The product is offered in multiple flavors, depending on the deployment needs of the organization: a Client version, for the protection of any flavor of desktop file; an Office 2007 plug-in that can be used in combination with the Client component, enabling file encryption in the Office suite leveraging Microsoft's own rights management system; a Command Line (CL) tool facilitating the automated encryption of a number of files; and a Lotus Quickr version that enables the encryption of files when they are downloaded from Quickr.

At the heart of the SecureFile product offering is the vendor's IBE (Identity-Based Encryption) technology, which seeks to generate the public keys in public/private pairs not via the requesting and retrieving of certificates, but rather based on the identity of the individual(s) who will need to decrypt the file. For example, a public key used to encrypt a document for a person could be as simple as the person's E-mail address. On the decryption side, the individual first logs into (authenticates themselves to) a key server, which then generates and delivers to them the appropriate private key (using mathematical principals based on their identity and server-based secrets) for decryption of the message. This private key need be retrieved by the user only once, when they first receive an encrypted message; and because the private key is determined based on the user's identity (in combination with a server-based secret and a selected point on the server's chosen elliptic curve) the end user themselves needn't pre-register with a certificate prior to the reception of an encrypted message. The key server can operate on-site, or through the vendor's own Voltage Security Network (VSN) managed service.

Encrypting a file and assigning the appropriate access rights is largely a point-and-click operation; a command-line tool is also available for batch file encryptions. Encryption remains with the file itself whether it is stored elsewhere or transported; with the files themselves encrypted to individuals or to groups. Access rights to files can additionally be rescinded based on group policies.

SecureFile is available now with pricing starting at $50/user for SMBs. The service-based (VSN) flavor of SecureFile is expected to be available later in Q1/2008.

Contact Voltage Security for further information.