Arender document viewer ROI: enforcing document security policy

Posted by François Barre on Sep 9, 2019 12:46:00 AM

In this series of blog posts dedicated to helping you, deciders, key users, IT managers, to precisely reckon the ROI of an advanced document viewer such as ARender, we detail what are your expected benefits and potential ROI.

Today in our ARender ROI calculation, we focus on fine-grained tracing any access to any document.

 

Fine-grained tracing any access to any document

When document security policy becomes a stake for your business, chances are you have implemented and deployed a strong security policy within your ECM system and/or business application, preventing non-habilitated users to access sensitive documents.

The ECM world has been pretty good at offering flexible and advanced ways to grant or deny access to documents and to prevent malicious alterations of document contents.

  • But what happens when the document needs to be downloaded to the user’s device for display ?
  • How can we prevent non-trustful users to print, transfer to non-authorized third-parties, alter document content ?

Because ARender never needs to download any content at the client-side, and only displays specially-crafted images on the user desktop, it makes content-stealing or leaking rather difficult.

ARender comes as an efficient way of enforcing document security policy already in place at the content repository side.

 

Let’s take a single example: at one of the key ARender customers, ARender replaced a desktop-based document viewer which allowed malicious users to perform a quite annoying action: opening an existing contract proposition, obfuscate existing text and replacing with altered document content, and sending as a what-looks-genuine new document.

Malicious users could then modify standard, normalized contract clauses without having to re-validate or notify in the business application.

Even if these kinds of actions are feasible within ARender (obfuscating, replacing text, producing content), they are also preventable. Access to original document content, access to newly produced content, is generally disabled by default in sensitive situations and allowed only for trustful, key users.

How can we quantify such benefits ? This mostly depends on the quantification of the risks of sensitive data leaks or alteration.

In very sensitive situations, avoiding just a single case of data leakage can legitimate the switch to an advanced viewing solution.

 

Download the guide: The ROI of Using the ARender Document Viewer

Download the guide

 

 

How ARender Viewer increases security

Physical documents are not secured - paper can be lost, misclassified or destroyed without anyone noticing.

But it can also be difficult to control the access, printing and copying of sensitive electronic files.

The viewer has advanced security features to address these challenges.

System administrators can configure granular permissions, which assign permissions at the document level (for example, settings based on the document type), at the user level (for example, function-based settings of the person) or at the system level (for example, the overall security of all data in the system).

The security benefits of a viewer go beyond access rights and traceability. The implementation of document management software also enables organizations to take advantage of electronic signatures, write confidential information, create audit trails, and so on.

 

 

Topics: ROI, ARender ROI