This article provides an Overview of the SSProtect SaaS system with clarifying terminology and use.
SSProtect was designed to protect and manage host application data, sometimes referred to as, "unstructured content" or, "endpoint application data". It was designed to deliver the high-degree of aggressive protection required to combat well-funded attackers while at the same time limiting inflexibility while reducing end-user, "daily use" impact.
The innovation necessary to achieve these goals forms a Foundation that helps you maintain business continuity even in the presence of malicious activity. Additional efforts consolidate interim results to improve key aspects of Security Incident Response and Recovery operations.
These facilities combine data security and content management together into the Unified Data Protection and Management System you see today. Service components are summarized in the article, Service Content.
SSProtect :Foundation Client
SSProtect is delivered in SaaS form. and is comprised of KODiAC Cloud Services, globally deployed and managed by DefiniSec, and the :Foundation Client, a desktop application offering advanced capabilities.
SSProtect deviates from traditional SaaS in that it does not support a browser-based approach. The desktop app - the :Foundation Client - is tiny, 7.5 MB installed. It starts when you Login to Windows and runs in the background, responding to activities associated with managed content or direct User interaction.
The :Foundation Client is freely available for Download here.
The :Foundation Client replaces traditional SaaS use of a web browser, presenting a context-based User Interface specific to the active Login Session. Your establish a Login Session by choosing an Account then presenting your Password (and any required 2FA credentials). The :Foundation Client coordinates secure acquisition of Account Policies (from KODiAC Cloud Services) then coordinates ongoing event activity and User requests based on configured settings.
Login Sessions persist for a (configured) period of time before reaching timeout, at which point the Session terminates. Subsequent activity related to managed content drives on-demand processing, presenting the interactive Windows user with the opportunity to choose an SSProtect Account and authenticate a new Login Session to proceed.
The :Foundation Client operates like other desktop applications, starting when you Login to Windows and executing within the context of the Windows User. If the :Foundation Client is terminated, you can restart by double-clicking the Desktop Shortcut created during installation.
User/ Account associations are explained in the related article, Accounts, Identities, and Roles.
File Explorer Integration
The software includes File Explorer integration that allows you to see Overlay Icons for protected/ managed files. It also extends the Explorer context menu - both the normal right-click menu, and the advanced menu you see when holding the Shift key and right-clicking a target. This allows you to Activate and Release Protections for/ from one or more target files.
The User Interface
The :Foundation Client exposes configuration items using a Context Menu associated with a notification tray icon that's created when the software starts (marked with the DefiniSec 'D' icon). If not immediately visible, click the notification tray to show hidden icons.
When you click the SSProtect icon, you will see the software's Context Menu. This menu changes depending on your User Role, exposing items that are relevant for your use. Menu Item selections leads to operations and User Interface elements that allow you to Login, modify your configuration, work with managed content, and perform other related tasks.
All UI elements include a Help button, which will direct you to a Support article, on this site, specific to the context in which you were working.
KODiAC Cloud Services
The :Foundation Client communicates with KODiAC Cloud Service components. These are highly available service components that expose primitives that make up the SSProtect application suite's capabilities. Each Account is configured with a certain set of available services, and as you work with your :Foundation Client and managed content, requests are securely dispatched to these cloud services for proper execution. This includes operations such as Identification of end-users, password and 2nd-factor token authentication, data encryption and decryption, backup and restore, reporting and analysis, and User/ Account provisioning, configuration, and maintenance.
The :Foundation Client coordinates requests with KODiAC Cloud Service components to manage content and SSProtect operations. Comms do not use SSL/ TLS and do not rely on the public chain of trust or Public Key Infrastructure (PKI). This avoids known risks and 0-day instances of common TLS-specific technologies, certain instantiations of open source, and infrastructure insecurity. Details are beyond the scope of this article however hold widespread significance in today's threat landscape.
All communications are protected using a proprietary communications protocol specifically designed to optimize security and performance. This protocol employs many aspects of both TLS and IPsec, however without the additional overhead these protocols utilize to deliver interoperability and extendibility for generic public consumption. This provides many benefits while reducing threats that come from common source targeted by nation-states, hackers for hire, and other highly capable and motivated threat actors.
For more insight on terminology and system components, refer to the article, Components and Names. Peruse the Concepts Section to gain more insight on how Users, Accounts, and Organizations are formed to manage content, or send email directly to firstname.lastname@example.org with questions for our staff.
This article was updated w/ v10.7.3 of the :Foundation Client