There is a growing demand for file transfers with 3rd parties (such as customers, partners, subcontractors, etc.) that are not part of the enterprise. Exchanging information with these 3rd parties is becoming necessary and vital to any e-Business communication strategy. As organizations understand the need to open up for communication with 3rd parties, they realize they need to cope with significant challenges, such as:

• How to centralize management and provide complete visibility of all file-transfer activity regardless of the protocol being used and/or the type of transfer?
• How to provide secure connectivity to 3rd parties while minimizing IT overhead for each new connection?
• How to address file transfer and connectivity security threats?

The Governed File Transfer Suite includes Inter-Business Vault® for Automated MFT, Inter-Business Vault® for Ad-hoc MFT, and Inter-Business Vault® for Collaborative MFT.

IBV is an enterprise-wide solution for governing and managing business file-transfers and can be used for:

• Replacing FTP and homegrown file-transfer processes which are unsecured and suffer from high total cost of ownership.
• Allowing the automation of file-transfer operations that are currently operated manually using CDs, Couriers, USB flash drives, which are expensive, unreliable, time consuming and prone to errors.
• Providing "ad-hoc" solutions enabling business users to send large files to 3rd parties, overcoming the email infrastructure challenges of handling large attachments.
• Enabling secure file sharing with 3rd parties, providing highly secure 24x7 global access to sensitive documents such as HR, Legal, Management, Marketing, Finance and Board of Directors.

GFT Suite can govern and manage many types of transfers based on your business file-transfer needs. Some of these include:

• Automated File-Transfers
• Collaborative-Transfers
• Ad-Hoc/Manual File-Transfers

Built on its patented Vaulting® Technology, IBV is the first Governed File Transfer solution in the market. Enterprises worldwide drive and govern their critical processes across business communities by utilizing IBV for exchanging financial transactions, manufacturing designs, drug-trial data, legal documents and other sensitive information. IBV is unique in providing a single platform supporting all methods of business file-transfer including automated, ad-hoc and collaborative processes, resulting in a centralized and fully governed file transfer solution.

Robust file-transfer process management:

• Large (Multi-Gigabyte) files support, transfer-recovery, automated resume and transparent compression
• Powerful file-transfer rules engine with Pre/Post Processing capabilities
• Customizable alerts for failed transfers and broken processes
• Email notifications for new files
• File-level tracking
• Data Integrity Checking

Administration:

• Centrally manage all data exchange and sharing processes
  • Supporting end-to-end automation as well as interactive collaboration
  • Centralized management for 3rd party users, access control, etc…
• Trading Partner Management
  • Delegated administration
  • One-click enrolment
  • Service-based access control settings
  • Authentication: SSO, LDAP, Radius

Security and Governance:

• Patented Vaulting Technology® - security is inseparable from the process, including:
  • Tamper-proof audit logs
  • Data encryption at rest and in transit
  • Strong authentication
  • Transparent encryption keys management
  • Segregation of duties, access control

With the Inter-Business Vault (IBV) as their secure platform for sharing and transferring highly sensitive information between partners, vendors and customers, organizations create a trusted, robust secure and regulatory compliant solution for any data interchange activity that happens outside of their organization.

Whether it's sharing clinical trial information between 100's of doctors, hospitals and CRO's, or automatically transferring ACH and ACT financial transaction files between back office applications in different banks on an hourly basis, the IBV's security, extensibility and ease of use, adoption and administration can handle any Managed File Transfer (MFT) or External File Sharing (EFS) application that your organization demands today and into the future.

Simple, Straightforward Secure Communications

In today's ever more complex IT and business environment, the IBV stands out for its simplicity, ease of use and productivity capabilities, all while providing the most secure, ICSA validated infrastructure platform for sharing and transferring your most highly sensitive information to your external partners, vendors and customers.

Comply with Regulatory Requirements

With complete logging and tracking of all document accesses, modifications and transfers, the IBV provides a regulatory compliant infrastructure for the external sharing and transfer of highly sensitive information between organizations over the Internet.

Easy One-Many and Many-Many Connectivity

The IBV provides an easy to use, adopt and manage method to connect your organization's individuals and applications to their partners, customers and vendors. With a powerful web interface and proprietary Connector technology, the IBV provides a variety of transparent yet secure interfaces that can easily be broadly used as your trusted community continues to expand.

Increased Productivity

Rather than manage and configure the tools needed to securely transmit and share information, or learn new behaviors, users of the IBV can easily access, upload and transfer any type of highly sensitive information with the click of a button.

Guaranteed Long-term Availability of Information

The Inter-Business Vault provides a secure, long-term repository of highly sensitive information, complete with a record of all accesses, uses and modifications of the data. In addition, this information is guaranteed to be always there when needed when the High-Availability and full Disaster Recover options are chosen.

Cost Effective Secure Infrastructure

Rather than install, manage and integrate a multitude of secure connections to your network, the IBV provides a single secure infrastructure platform for the full range of file transfer and highly sensitive information sharing requirements between you and your partners, customers and vendors.

• Centralized management and governance over all transfer processes, whether internal, external, automated manual or ad-hoc
• Enablement, support and improvement of business processes and SLAs - IBV streamlines your business processes utilizing high performance transfer with 24X7 accessibility
• Reducing risk of disclosing sensitive information - Based on the patented Digital Vault® security platform, IBV provides the highest levels of security, confidentiality and authenticity
• Providing easy integration with the enterprise infrastructure and legacy systems
• Reducing operational costs and simplifying relationships and communication across the business community by minimizing IT overhead

Pharmaceutical Leader AstraZeneca Collaborates Securely with IBV

AstraZeneca, with $21.4 billion in annual sales, is one of the top five pharmaceutical and health care services providers in the world. AstraZeneca specializes in medicines to treat cancer, cardiovascular conditions, gastrointestinal disorders, the central nervous system, pain, and respiratory illnesses. The company employs 64,000 around the world, with 12,000 of those working in the United States.

The pharmaceutical industry is as competitive and regulatory intensive as it gets. In 2004, AstraZeneca invested $3.8 billion into new drug research and development, and has 11,900 employees dedicated to drug and treatment research and development. With so much invested in R&D, the company needed a secure and manageable way to collaborate internally, with its contract research organizations, and academic and biotechnology partners. "We needed a secure way to share documents with our business partners," says Patrick Meehan, lead technical architect at the company.

Previously, AstraZeneca used a secure collaborative application it had built in-house, which required a VPN client to be installed on each user's system. This proved to be too much of a high-management burden. "We were always getting [help-desk] calls about it. Either it didn't work, we had to constantly adjust firewall settings, or similar annoying issues," says Meehan.

AstraZeneca needed to find a better solution. A few of its requirements for the project included that there be no plug-ins or software that had to be installed on the end users' systems. The secure collaboration tool had to be seamless to the end user, and Web-based. "We wanted no setup overhead or concerns about having to open firewall ports," he says.

After several internal pilots were completed, AstraZeneca chose Cyber-Ark Software's Inter-Business Vault. "It's proven to be very easy to deploy and maintain. There's no need to tweak any code," says Meehan.

Just like a physical vault, Cyber-Ark's Vaulting Technology was developed to create information "safe havens." Cyber-Ark's Inter-Business Vault incorporates layered security protection provided by its integrated firewall, authentication, access control, session and data encryption, content inspection, secure backup, version control, and other granular security controls. Cyber-Ark's Vaulting Technology makes it possible for companies to create an instant Wide Area Network (WAN) to securely connect and collaborate with their partners, subcontractors, and customers over the Internet.

End users need only a Web browser to access a highly secured vault. Information is secured via HTTPS and Cyber-Ark's specialized encryption, and companies can choose to integrate other authentication methods, including public key infrastructure, RSA security, or Windows Domain authentication. With Inter-Business Vault, security managers can create highly-specific access rights, so that users see only the vaults they're authorized to access, as well as limit how long individual users and Vaults are active.

The other vendors' programs evaluated by AstraZeneca proved too cumbersome to deploy and manage, or simply failed to provide the complete solution AstraZeneca required.

AstraZeneca first deployed the Inter-Business Vault for use within its drug development process. The investments and information tracking needed to bring a new drug to market is overwhelming. It can take more than a decade before the drug can pass FDA approval, and millions of pages of documentation can be generated. It's estimated that it costs pharmaceutical companies $1 million for each day a drug is under development. That's why it's so costly for any pharmaceutical company to have any time wasted waiting for overnight couriers and inter-office mail. Cyber-Ark provided a quick way to speed the process. "One of the key benefits Cyber-Ark brought to us is the ability to exchange data and documents more quickly with our business partners," says Meehan.

Another key benefit, explains Meehan, is Inter-Business Vault's ability to provide complete version control for each file uploaded to a vault. When files are placed inside the Vault, new versions are created and existing files are never overwritten. This powerful version-control mechanism protects against deliberate and unintentional data corruption and has been "extremely useful," says Meehan.

Inter-Business Vault has proven so useful at creating highly-secure collaborative groups, AstraZeneca now uses it throughout its organization.

Whenever a new business unit needs to create a secure collaborative workgroup, Meehan simply adds the users, and sets the security polices for the new Vault which, in many cases, can be created in a day. "It's that simple," says Meehan.

Encryption Algorithms:

• AES-256, RSA-2048
• HSM Integration
• FIPS 140-2 validated cryptography

Enterprise Integration

• Clustering Support
• Disaster recovery solution
• Integration with enterprise backup system
• LDAP directories
• Identity and Access Management

Authentication Methods:

• Username and Password
• RSA SecurID
• Web SSO
• RADIUS
• PKI and smartcards
• LDAP
• Windows-based authentication

Monitoring:

• SIEM integration
• SNMP traps
• Email notifications