![]() ![]() You can share encrypted content by email, but you can't view encrypted documents and files online. You must label and protect documents and files with DKE by supported applications before you upload to these locations. You can store documents and files that are protected with Double Key Encryption online in both Microsoft SharePoint and OneDrive for Business. Microsoft 365 Apps for enterprise clients on Windows, including Word, Excel, PowerPoint and Outlook. Supported environments for storing and viewing DKE-protected content Download and install the Unified Labeling client from the Microsoft download center. ![]() Microsoft Office Apps for enterprise version 2009 or later (Desktop versions of Word, Excel, PowerPoint and Outlook) on Windows.Īzure Information Protection Unified Labeling Client versions 2.14.93.0 or later. ![]() Install these prerequisites on each client computer where you want to protect and consume protected documents. DKE works with sensitivity labels and requires Azure Information Protection.ĭKE sensitivity labels are made available to end users through the sensitivity button in the AIP Unified Labeling client in Office Desktop Apps. For more information about these licenses, see Microsoft 365 licensing guidance for security & compliance.Īzure Information Protection. If you don’t have a Microsoft 365 E5 license, you can sign up for a trial. System and licensing requirements for DKEĭouble Key Encryption comes with Microsoft 365 E5. All of the keys that you hold for data encryption and decryption are maintained in your data center. You have regulatory requirements to hold keys within a geographical boundary.You don't want Microsoft to have access to protected data on its own.You want to ensure that only you can ever decrypt protected content, under all circumstances.If your organizations have any of the following requirements, you can use DKE to help secure your content: Double Key Encryption is relevant for sensitive data in highly regulated industries such as Financial services and Healthcare. Use Microsoft Purview Information Protection capabilities (classification and labeling) to protect most of your sensitive data and only use DKE for your mission-critical data. Applications that integrate with our SDK can reason over this data with sufficient permissions and integrations in place. The Microsoft Information Protection SDK 1.7+ supports Double Key Encryption. Office Web Apps including coauthoring functionalityĪny external applications or services that aren't integrated with DKE through the Microsoft Information Protection (MIP) SDK will be unable to perform actions on the encrypted data. ![]() Transport rules including anti-malware and spam that require visibility into the attachment.Also, these solutions enable you to use the most powerful Office 365 services services that you can't use with DKE encrypted content. These solutions are sufficient for documents that aren't subject to enhanced protections and regulatory requirements. In some cases, you might need to narrow your scope and use other solutions for most of your data, such as Microsoft Purview Information Protection with Microsoft-managed keys or BYOK. You should do due diligence in identifying the right data to cover with this solution before you deploy. In general, you'll be using Double Key Encryption to protect only a small part of your overall data. When your organization should adopt DKEĭouble Key Encryption is intended for your most sensitive data that is subject to the strictest protection requirements. Learn details about signing up and trial terms. Start now at the Microsoft Purview compliance portal trials hub. If you're not an E5 customer, use the 90-day Microsoft Purview solutions trial to explore how additional Purview capabilities can help your organization manage data security and compliance needs. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |