Sarbanes-Oxley Act of 2002 (SOX) Solution

Implementation: DS5.11

COBIT Control Objective	Check Point Solution
DS5.11 Exchange of Sensitive Data Exchange sensitive transaction data only over a trusted path or medium with controls to provide authenticity of content, proof of submission, proof of receipt and non-repudiation of origin.	Check Point Full Disk Encryption delivers the highest level of data security by providing a strong, full disk encryption solution for PCs and laptops as well as access control. Check Point Full Disk Encryption enables secure mobility of sensitive data by ensuring only authorized users with the proper credentials can gain access to it. Check Point's remote access solutions, VPN-1 and Connectra, provide strong encryption for data during transmission over open networks using standards-based encryption protocols. VPN-1 supports SSL- and IPSec-encrypted communication protocols. Connectra supports SSL- and TLS-encrypted communication protocols. In addition, both products support the MD5 and SHA-1 protocols to ensure the integrity of secure transmissions involving cardholder data. UTM-1 Edge, which provides Wi-Fi access as part of the solution, employs IPSec-over-WLAN encryption and enables the regular rotation of WEP keys. It supplements WEP, WPA, and WPA with inspection by Check Point's firewall, intrusion prevention, and antivirus technologies. Users who use IPSec over WLAN rather than WEP can be granted higher access rights, as well. Check Point VARs, SIs, and business partners can provide consulting services to deploy Check Point solutions within an organization to enable the secure exchange of data.

COBIT Control Objective

Check Point Solution

DS5.11 Exchange of Sensitive Data

Exchange sensitive transaction data only over a trusted path or medium with controls to provide authenticity of content, proof of submission, proof of receipt and non-repudiation of origin.

Check Point Full Disk Encryption delivers the highest level of data security by providing a strong, full disk encryption solution for PCs and laptops as well as access control. Check Point Full Disk Encryption enables secure mobility of sensitive data by ensuring only authorized users with the proper credentials can gain access to it.

Check Point's remote access solutions, VPN-1 and Connectra, provide strong encryption for data during transmission over open networks using standards-based encryption protocols. VPN-1 supports SSL- and IPSec-encrypted communication protocols. Connectra supports SSL- and TLS-encrypted communication protocols. In addition, both products support the MD5 and SHA-1 protocols to ensure the integrity of secure transmissions involving cardholder data.

UTM-1 Edge, which provides Wi-Fi access as part of the solution, employs IPSec-over-WLAN encryption and enables the regular rotation of WEP keys. It supplements WEP, WPA, and WPA with inspection by Check Point's firewall, intrusion prevention, and antivirus technologies. Users who use IPSec over WLAN rather than WEP can be granted higher access rights, as well.

Check Point VARs, SIs, and business partners can provide consulting services to deploy Check Point solutions within an organization to enable the secure exchange of data.

Go to Check Point Product Info:

Return to Implementation