You can thank Edward Snowden for one thing, he has single handedly given almost every security vendor on the planet an obvious starting point when it comes to conversations with customers and investors. The heightened awareness about the need for security in general, and encryption in particular has launched a multitude of startups.
And it’s understandable, there is the interesting fact that the Snowden revelations came about at the same time as the use of cloud solutions was increasing markedly – in between those two facts is a gap, and it’s a gap that security and data vendors are running hard to fill. Of course some suggest that it’s a gap that shouldn’t exist, many of those suggesting a solution should really offer deep security natively are vendors themselves.
One of those vendors is Tresorit, a company offering secure cloud workflow – essentially Tresorit is a vendor that stands up to industry heavyweights Box,Dropbox, Google and Microsoft and suggests that their services simply aren’t secure. Only a paragraph into Tresorit’s latest press release and the company tells us that:
The reality of today’s enterprise-grade cloud storage options is their security features are not enough. They focus on protecting infrastructure instead of actual data
That’s a strongly worded statement, so what is Tresorit doing differently? The company utilizes its own patented encryption technology and offers built-in, end-to-end encryption. Think a simple use interface and behind it a fully-featured solution offering compliance and control.
The company is today announcing some new features including what it calls a Digital Right Management feature. Actually enabled by a Microsoft offering, Tresorit’s DRM gives heightened control over sharing and release of files. That means protected files cannot be accidentally emailed to the wrong recipient, leaked by a hacker or eavesdropping systems administrator, or copied to a USB drive. Unauthorized sharing is not permitted, and even screen captures of protected content are programmatically blocked.
Additional features that Tresorit is rolling out today include:
Distributed Control of Files — Administrators can set access levels on all folders (known as tresors), defining roles across teams. Roles include “Owner,” “Manager,” “Editor” and “Reader.” Granular permissions can allow or prevent team members’ ability to view, edit, copy, save, print or comment as necessary. Once assigned, roles carry over from desktop to users’ mobile devices, platforms include iOS, Android and Windows.
On-the-Fly Permission Change — As needed, access to data can be modified or revoked altogether and the user’s rights will change immediately. Revoking access effectively destroys documents, as re-opening them is impossible under any circumstance, due to each file’s separate, AES -128 encryption. Limitations can be enforced on the fly, despite users having physical access to the data on their devices.
Business-Ready Secure Content Management – Tresorit users can now access and browse client-side encrypted content in the cloud without any download and decryption necessary. Furthermore, any file can be sent securely via its Encrypted Link Center to anyone, even non-Tresorit users. One-click access management and revocation is available for links at any time.
The fact that Tresorit has a patent for some of its cryptography is kind of cool but doesn’t remove the fact that it’s a small vendor trying to build a brand in a space which is incredibly busy. WIth the big names having tens of millions of dollars to throw at marketing, it’s hard for a small company to be heard above the noise.
In this industry, alas, hype often beats substance. What Tresorit offers looks really good – whether that is enough to give them an edge remains to be seen.