Reporting (TDE)
Overview
Smartcrypt's data security intelligence (DSI) adds another layer of security by allowing enterprise security teams and audit/risk personnel to watch the use of Smartcrypt TDE within an enterprise. Reporting allows enterprise security teams and audit/risk personnel to observe encryption of files, the user who encrypted the file, the device the user used to encrypt the file, and users who access the file. With DSI, any updates or changes to TDE Agents, TDE Groups, and TDE Keys can also be tracked. All of this information can be viewed in the Reporting page within the TDE tab.
Events
Event | Event Description |
---|---|
Allow | When adding a Smartpoint to a TDE agent, the Allow event is reported. SMDS allows a TDE agent access to a Smartpoint recently created for that TDE agent. |
Copy TDE Agent | System and Security Administrators can copy the configuration of a TDE agent. Learn more about TDE agents here. |
Create Smartpoint | System and Security Administrators can create Smartpoints for a specific path within a TDE agent. Learn more about adding Smartpoints here. |
Create Smartpoint Policy | System and Security Administrators can add Smartpoint policies for groups where they are administrators. Click here for more information on adding Smartpoint policies. |
Create TDE Agent | System and Security Administrators can create a TDE agent by installing the agent through the Smartcrypt Enterprise Manager. The server on which the TDE agent was created will be reported along with group to which it belongs. Learn more about installing a TDE Agent here. |
Create TDE Group | System and Security Administrators can create TDE groups with Smartcrypt Enterprise Manager. Administrator(s) may be assigned to a TDE group. These administrator(s) will now maintain control of the group. The event records the date and time of creation as well as the creator of the group. Learn more about TDE Groups here. |
Create TDE Key | System and Security Administrators can create TDE keys with Smartcrypt Enterprise Manager. The creator of the key and time of creation will be stored in the event in Smartcrypt TDE Manager. Learn more about adding TDE Keys here. |
Delete Smartpoint | A Smartpoint may be deleted by system and security administrators within Smartcrypt Enterprise Manager. The user who deletes the Smartpoint will be recorded as well as when the Smartpoint was deleted. Click here to learn more about the effects of deleting a Smartpoint. |
Delete Smartpoint Policy | System and Security Administrators may delete a Smartpoint policy within Smartcrypt TDE Manager. The user who deletes the policy and when the user deletes the Smartpoint policy will be reported. Go here to learn more about deleting Smartpoint policies. |
Delete TDE Agent | System and Security Administrators may delete a TDE agent. The deletion of the TDE agent will be reported in DSI. Learn more about TDE agents here. |
Delete TDE Group? | A TDE group may be deleted by system and security administrators within Smartcrypt Enterprise Manager. |
Delete TDE Key | TDE keys may be deleted by System and Security Administrators within Smartcrypt Enterprise Manager. When the key was deleted as well as who deleted it will be reported in the event. Learn more about the effects of deleting a TDE key here. |
Deny | When deleting a Smartpoint from a TDE agent, the Deny event is reported. SMDS denies a TDE agent access to a Smartpoint recently deleted from that TDE agent. |
Rename TDE Group | A System or Security Administrator can rename a previously created TDE group.The event records the new name of the TDE group as well as its previous name. Learn more about TDE groups here. |
Update Smartpoint Policy | An administrator of a Smartpoint Policy can update Policy default actions, groups, and exceptions. Updates to Smartpoint Policies are recorded as events. To learn more about Smartpoint policies go here. |
Update TDE Group | A System or Security Administrator can update a TDE group to change the administrators who control and maintain access to the group. The change in administration will be reported. Learn more about TDE groups here. |
Possible Events: Enabling/Disabling TDE Agent Encrypt/Decrypt (Not sure if this is how the events appear) |