NextLabs Introduces Major Enhancements to Data Access Enforcer and Application Enforcer

Expanded support for applications, enhanced Format Preserving Encryption (FPE) data obfuscation, and improved data masking obligation

 

Powered by NextLabs’ CloudAz Zero Trust Unified Policy Platform with the Dynamic Authorization policy engine, the enforcer line of products, including Data Access Enforcer (DAE) and Application Enforcer allow companies to dynamically enforce policies independent of application, application function, network, endpoint, UI, API, and Microservice- regardless of how the data is being accessed. 

NextLabs’ enforcers simplify access management and protect data using Attribute-Based Access Control (ABAC) to enforce least privilege access ensuring only authorized users can access sensitive information. Enforcers can automatically protect data at the source, at rest, or in use, safeguarding data access by segregating and obfuscating business-critical data.  

With the recent updates to Data Access Enforcer (DAE) and Application Enforcer, NextLabs offers expanded support for applications and simplify configuration management, enhanced Format Preserving Encryption (FPE) data obfuscation, and improved data masking obligation. Additional improvements and new functionalities of these products include:   

New Enforcer released: 

  • DAE for Siemens Teamcenter 
  • Application Enforcer for PTC Windchill 

DAE for SAP 

  • Simplify configurations for multiple SAP Instance: 
    • Support for multiple SAP instances hosted on one physical server with All-In-One DAE package 
    • Each DAE Core in SAP instance can be upgraded separately 
    • Each DAE can be connected to different NextLabs Control Center instance 
  • Support multiple SAP instances with different backend DB with a common DAE package: 
    • For example, S/4HANA, ECC on HANA, ECC (Unicode, Non-unicode) on Oracle, ECC (Unicode, Non-unicode) on DB2 
  • New functionalities and enhancements: 
    • Enhanced SQL Query logging functionality for easy troubleshooting 
    • Core DAE platform level enhancements:  
      • Exception handling: Use async method to query JPC and CC. 
      • Policy metadata caching via Support Security table list policy. 
      • Whitelist user handling 
      • Using authentication access token via JPC 
      • Optimized memory management handling for policy sync interval etc. 
    • Enhanced Format Preserving Encryption (FPE) data obfuscation 
      • Add support for remote execution of the Bulk Obfuscation Tool (BOT) 
      • Added support for Conditional FPE 
      • Enhanced support for LongText and iDoc 
      • Enhanced support for FPE Dynamic Masking 
    • Certified with S/4 HANA 2023, 2022 

DAE for Oracle

  • Certified with Oracle EBS, Oracle Siebel CRM, and Oracle PeopleSoft 
  • Improved data masking obligation 

DAE for HANA

  • Add support for SAP Analytics Cloud 
  • Updated container deployment for better user experience 
  • Improved data masking obligation 

SAP DAM 

  • Extended support for SAP GTS and using GTS classification data for policy enforcement in ECC and S/4HANA system  
  • Enhanced Dynamic Transaction Interception (DTI) module to expand entity/attribute derivation to achieve low code policy enforcement 
  • Enhancements to use combination of identifier and resource attributes for Dynamic interception 
  • Improvements on secure the Policy Server communication channels 
  • Extended support for Data Loss Prevention Scenarios 
  • Certified with S/4 HANA 2023, 2022 

Application Enforcer for SharePoint 

  • Certified with SharePoint Subscription Edition 

Windows Desktop Enforcer & Outlook Enforcer

  • Certified with Win11 
  • Certified with Office 2021 
  • Certified with Office 365 

Application Enforcer for Microsoft Teams 

  • Deny users from joining Channel, Meeting, or Team based on attribute-driven policy 
  • Deny the user from inviting certain users to the Team or Channel based on attribute-driven policy 
  • Deny certain users from creating a Team based on attribute-driven policy 
  • Alert users in Posts when changing classifications  
  • Alert users in Posts when a certain user is invited to join the Team or Channel 
  • Deny file access and download 
  • Trim files in Files list base on policy 
  • Send notification messages in Posts based on policy  
  • Automatic Classification – allow Application Enforcer for Teams to automatically classify a Team, Meeting, or Channel based on policies  

Application Enforcer for SharePoint Online  

  • Dynamically restrict access to a library, list, or site in SharePoint Online 
  • Control access via resource and user attributes from browser and office application 
  • Support AIP label 
  • Integrated digital rights management (DRM) to auto-protect file in SharePoint