When it comes to Controlled Unclassified Information (CUI) compliance, data encryption is always at the forefront of the conversation. Today, leading edge features require a high level of security when information is both in-transit and at rest.
Let’s begin with a little bit of history on the topic. In 2001, the National Institute of Standards and Technology (NIST) established Advanced Encryption Standard (AES) as an encryption specification. It is a standard within the US Government, because it offers the highest level of security when it comes to electronic data. Specifically, 256-bit encryption refers to the length of the encryption key used to protect data streams or files.
If you are not aware of the security dangers you are up against how do you plan on making that a reality? Saying you have an IT guy is not the solution. You as the business owner must learn what you are up against and how to arm yourself properly. At RegDOX Solutions, we concentrate on technological solutions that reflect the reality of how electronic storage and collaboration can be best used by a company and the cyber-security risks of any use. Customer data is protected with a 256-bit Advanced Encryption Standard (AES) encryption. But what exactly does it mean?
What this means is that an intruder would require 2256 different combinations to break an encrypted message. This is virtually impossible to do, even by the world’s fastest computers. This type of encryption prevents unauthorized users, including IT service providers and administrators from accessing the data as well, to ensure that your system is fully compliant. All data transmission between the client and the server (document upload and download, viewing of content) is also protected with 256-bit encryption. So, while your data is being protected at rest within a server with 256-bit AES encryption, RegDOX Solutions also protects your data in transit – this is done via another high-security capability feature: 256-bit SSL encryption. SSL stands for Secure Sockets Layer. SSL is type of data transfer that utilizes encryption to scrambles data in transit, keeping sensitive data unintelligible over the connection to unauthorized users.
Secure links to documents can be sent to licensed users of the technology, as well as to external users, i.e. third parties not brought in as a part of a client’s group of authorized, full functioned users. When a document is sent to an external user via RegDOX Secure Data Room, a time-limited link to the item is sent. After the link validity has expired, externals can no longer access the document. Secure, traceable delivery of documents is achieved and recorded in a tamper-proof audit-trail. Most importantly as well, not only are actions of users and all events involving documents and other files included in a non-editable, permanent record, but also RegDOX’s clients can identify events for which they want immediate notification. This is done via alerts which promptly helps identify any possible cyber-security breach so that rapid remedial action can be taken. For more information, get in touch with RegDOX Solutions and schedule a demo today.
About RegDOX Solutions Inc.
Operating since 2007, RegDOX Solutions Inc. is a market-leading provider of highly intuitive SaaS solutions enabling customers to securely manage and collaborate on confidential documents and information, whether inside or outside of their IT environments. RegDOX® offers compliance options for the transference and storage of ITAR, DFARS, EAR, HIPAA, and Corporate technical data within the cloud through highly intuitive, feature-rich virtual data room solutions. In addition, RegDOX offers DFARS assessment services for contractors and subcontractors of the DoD.