Microsoft Server 2012 Dynamic Access Control (DAC) is a new authorization model that gives companies the ability to define central access policies to control access to files based on the classification of the data and attributes of the user. DAC greatly simplifies the administration of file server security and makes it easier to comply with SEC regulations for information barriers and protection of sensitive client data. Attendees of this webinar will learn more about Windows Server 2012 DAC and see how it can be applied to improve compliance with SEC regulations. In this webinar, Microsoft and NextLabs will: • Introduce you to DAC, a powerful new security feature in Windows Server 2012. • Map DAC functionality to critical SEC requirements for classification, access control, information barriers and record keeping. • Demonstrate a solution where DAC is used to automate SEC compliance controls across Windows Server 2012, Microsoft SharePoint and email. This webinar will be helpful for customers who need to meet SEC requirements, or who are interested in creating information barriers between project teams. It is also helpful for both Compliance and IT professionals looking for tools to help them reduce IT administration cost, enable information sharing, and improve corporate compliance.

1. © 2005-2013 NextLabs Inc.
Using Microsoft Dynamic Access Control to
Create Information Barriers for SEC Compliance
Nir Ben-Zvi
Principal Program Manager
Andy Han,
VP of Product Management

2. © 2005-2013 NextLabs Inc.
Agenda
Microsoft Dynamic Access Control (DAC)
Overview
SEC Compliance and Information Barriers
SEC Information Barrier Solution Walkthrough

3. CSO/CIO
department
“I need to have
the right
compliance
controls to keep
me out of jail”
Infrastructure
Support
“I don’t know
what data is in
my repositories
and how to
control it”
Content Owner
“Is my
important data
appropriately
protected and
compliant with
regulations –
how do I audit
this”
IW
“I don’t know if I
am complying
with my
organization’s
polices”

7. x 50Country
Department x 20
Sensitive

8. User claims
User.Department = Finance
User.Clearance = High
ACCESS POLICY
Applies to: @File.Impact = High
Allow | Read, Write | if (@User.Department == @File.Department) AND
(@Device.Managed == True)
Device claims
Device.Department = Finance
Device.Managed = True
Resource properties
Resource.Department =
Finance
Resource.Impact = High
AD DS
8
File
Server

9. © 2005-2013 NextLabs Inc.
SEC INFORMATION BARRIERS
Mapping Dynamic Access Control to

10. © 2005-2013 NextLabs Inc.
Thank You!
Thank you for watching a preview of our webinar.
So far, you have seen an overview of Microsoft Dynamic Access Control (DAC)
and how it can provide a dynamic way to control access to your critical data.
The second half of this presentation covers specific SEC requirements for
information barriers and looks at how to apply features of Microsoft DAC to
provide a solution that helps companies simplify their compliance program
and improve their compliance posture.
Click HERE to request access to view the entire webinar.
- NextLabs
www.nextlabs.com