<div>
<div class="content wysiwyg-content">
I have an SBS 2003 server and XP Pro workstations. We have less than 10 users. Our data is extremely valuable and often confidential. I have 2 areas which are currently security holes for data in my network:<br />
<br />
1. I assign users particular projects. These users have the ability to work with the data (mostly MS Word docs) regarding the project. Other users must not be allowed access.<br />
<br />
Possible solution: NTFS permissions. But this does not prevent users with the permission to access files, copying them and making them available to other persons.<br />
<br />
2. I need to prevent that any data from leaving our premises (either via email, copying to floppy, USB stick or even the servers hard disk being removed!). Putting it blunting, I don't want data to be stolen!<br />
<br />
Possible solution: Encryption using private/public key rings? Administrative nightmare? Expensive?<br />
<br />
Any ideas what measures I can put into practise to allow data just to be used by authorised persons and preventing it from wandering outside of our network.<br />
<br />
Thanks for your comments.
</div>
</div>


I have an SBS 2003 server and XP Pro workstations. We have less than 10 users. Our data is extremely valuable and often confidential. I have 2 areas which are currently security holes for data in my network:

1. I assign users particular projects. These users have the ability to work with the data (mostly MS Word docs) regarding the project. Other users must not be allowed access.

Possible solution: NTFS permissions. But this does not prevent users with the permission to access files, copying them and making them available to other persons.

2. I need to prevent that any data from leaving our premises (either via email, copying to floppy, USB stick or even the servers hard disk being removed!). Putting it blunting, I don't want data to be stolen!

Possible solution: Encryption using private/public key rings? Administrative nightmare? Expensive?

Any ideas what measures I can put into practise to allow data just to be used by authorised persons and preventing it from wandering outside of our network.

Thanks for your comments.

Securing SBS 2003 data from internal mis-use or robbery

Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability. OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised, including authentication, passwords and threats to systems and programs.