How to implement secure file sharing between systems of different security levels
Typical file sharing can create pathways between the systems of different security levels. I want to provide files (containing no sensitive data) from a secure system so that they can be read from low security systems, without having to ftp through firewalls which have more important duties. What solutions are there? Would data replication be a secure solution?
Software/Hardware used:
Software/Hardware used:
ASKED:
July 23, 2009 12:18 PM
UPDATED:
July 24, 2009 3:56 PM
Answer Wiki:
A website like Sharepoint or other content provider would be a good mechanism for this activity. You can have authentication on the website and it would be centralized for backup purposes.
In the IT trenches? So am I - read my <a href="http://itknowledgeexchange.techtarget.com/it-trenches">IT-Trenches blog</a>
To see all answers submitted to the Answer Wiki: View Answer History.
Definitely check out Sharepoint or develop your own internal Web-based solution.
The systems are within a building, and are connected by LANs, Ideally I would like to connect both systems to a shared disk, but I have not found a solution which would not require an interconnection of the two systems at an IP level (e.g for mounting the file system). This would not be acceptable according to our security policy. I suggested possibly data replication as a solution, assuming that the interconnectivity would be dedicated block level exchanges and that th files on the “remote” system would be readable without any interaction with the originating system. Using a web service is outside the scope of this particular problem.
Some disk sharing solutions would permit you to mount the same volume as CIFS or SMBFS (SAMBA).