Security Policy Enforcement

Nexor’s solutions ensure that sensitive information is accessed, controlled and shared in accordance with prevailing security policies by managing the connection, transformation and protection of that information as it flows between individuals and domains. In short, enforcing the security policy as data is exchanged.

Our portfolio includes guard and gateway technology.  To enable end-to-end policy enforcement, our gateway solutions transform embedded security factors, such as labels, in the source domain to a form that the recipient domain can understand and correctly interpret.  Our guard solutions protect the organisation by ensuring that any outbound data is conformant to the data sharing policy, for example, is the recipient of the data entitled to receive it, and validating that any inbound data has been suitably checked to protect the organisation from inappropriate content that could lead to a downstream denial of service.

Within a messaging context, our solutions enforce access policy. Nexor software can be customised to control an individual’s access based on the individual’s clearance or a set of arbitrary criteria, for example, an individual might have different access rights for reading, copying or forwarding information based on their current location. Our software can support information relevant to individuals or to roles within organisations. This enables the organisation to permit or restrict different levels of access to different individuals carrying out specific roles. We also enable organisations to guarantee timely action in accordance with stated policies and service levels.

For security policies such as these to be effective, they must be consistently communicated and applied by all security enforcing components. This is a core design philosophy in all Nexor solutions, which enables a system or organisation security policy to be defined, managed and enforced. With our policy management tools, data can be labelled and access restricted to suitably authorised individuals or roles. This enables rigorous access control to be applied to information in transit and provide confidence the policy is applied consistently by technology components.

All Nexor software is developed in the UK, with IPR held by Nexor. It conforms to relevant standards and is internationally recognised for its ability to enable secure information transfer within and between organisations.