SDF Function Specification Document
This is a specification document that organizes the user functions provided by SDF into large, medium, and small categories.
| Major Category | Subcategory | Subcategory | Detailed Description | Note |
|---|---|---|---|---|
| Encryption | DRM Encryption | DAC Encryption | The document owner directly specifies access permissions for encryption - Control individual permissions such as reading, editing, decrypting, external transmission, and printing. - Granting permissions on a user or group basis | |
| MAC Encryption | Automatic encryption applied according to the organization's security classification policy (confidential, proprietary, general, etc.) | |||
| GRADE Encryption | Encryption based on security levels (Classified, Sensitive, Open), multi-DAC authorization by level | |||
| AIP Encryption | Applying AIP Protection | Select the Microsoft AIP label defined by the organization to perform encryption. | ||
| Decryption | DRM Decryption | Normalization | Remove both AIP + DRM protection from the encrypted document to restore the original document. | |
| Decryption | Optionally remove only the external encryption layer, while maintaining the internal encryption. | |||
| AIP Decryption | AIP Protection Removal | AIP label and decryption, DRM is maintained if applied separately. | ||
| Encryption Verification | Type Lookup | Check Encryption Type | Check the encryption types applied to the document (MAC, DAC, GRADE, Unencrypted) | |
| Document Type Identification | Check Document Protection Type | Distinction between DRM documents, AIP documents, and general documents | ||
| Document Information Retrieval | Header Query | Security Header Information Retrieval | View security headers such as access level of the encryption document, encryption methods, and policy information. | |
| Hidden Information Inquiry | Document Tracking Information Inquiry | Viewing tracking information such as document ID, author, creation path, security level, etc. | ||
| Label List | View Full Label List | View the complete list of AIP labels available in the organization | ||
| Label Details | Individual Label Detail View | View detailed settings, protection policies, and permission information by label ID | ||
| Hidden Information Management | Inquiry | Retrieving Hidden Attributes | Retrieve Custom Metadata Inserted in Office Documents (Department, Project Name, etc.) | |
| additional | Add Hidden Attribute | Inserting Name-Value Pair Custom Metadata in Office Documents | ||
| delete | Delete Hidden Attributes | Delete specific hidden attributes by specifying the attribute name | ||
| Security Level Management | View Grade List | View All Grade List | View the complete security classification list and associated label information set in the organization. | |
| Document Grade Inquiry | Document Security Level Inquiry | Check the current security level and confidentiality level applied to the document | ||
| Document Grade Setting | Document Security Level Settings | Assigning, Modifying, and Deleting Security Levels in Documents | ||
| Creating SOM File | File Creation | Creating Files for External Transfer | Creating a Secure Executable File (SOM) That Can Be Accessed Without Document Security Software | |
| Access Control | Password Protection | Setting a password (combination of letters and numbers) for the SOM file | ||
| Save As | Allow/Block Save As Control | |||
| Print Limitations | Print permission and limit on the number of times (1 to 10), complete blocking possible | |||
| Access Restriction | View count limit (1 to 99 times or unlimited) | |||
| Automatic Destruction | Automatic Disposal of Documents After Expiration Date | |||
| Specific PC Restrictions | Document can only be viewed on designated PC. | |||
| Viewer Settings | Viewer Support | Select Office/Image/Text Viewer when opening SOM files. | ||
| Conditional Policy | Basic Policy Information | Policy Creation/Management | Managing policy name, description, version, activation status, and validity period | |
| App Selection | Set Connection App | Select the target app for policy application | ||
| User Assignment | User/Group Assignment | Specify Users/Groups for Policy Application and Set Exceptions | ||
| General Document | Extension Filter | All/Not Applied/Select Specific Extensions (.docx, .xlsx, .pdf, etc.) | ||
| DRM Document | DRM Type Filter | Select All/Not Applied/Specific DRM Types (DAC, MAC, GRADE) | ||
| AIP Document | AIP Label Filter | Select All/Not Applied/Specific AIP Label | ||
| Security Level | Grade/Label Filter | Policy applies only to documents of a specific security level, combination of level + label possible | ||
| Hidden Information | Hidden Attribute Matching | Apply policy only to documents where the specific hidden attribute name and value match | ||
| Location/IP Conditions | IP-based conditions | Application of Policy Based on Request Source IP Range (Internal/External Distinction) | ||
| Time Conditions | Time-based conditions | Policy Application/Exclusion by Requested Time Zone (Differentiation Between Business/Non-Business Hours) | ||
| Executing DRM Encryption | Application of DAC/MAC/GRADE | Automatic encryption with the selected DRM type when conditions are met | ||
| AIP Encryption Execution | Applying AIP Labels | Automatic encryption with the selected AIP label when conditions are met | ||
| Simplified Execution | Remove All Protections | Automatically remove both AIP and DRM protection when conditions are met | ||
| Decryption Execution | Remove External Protection | Automatically remove external encryption layer only when conditions are met, while maintaining internal encryption. | ||
| Capsule Export | Creating SOM File | Automatic generation of SOM files with specified permissions when conditions are met | ||
| Insert Hidden Information | Inserting Metadata | Automatic insertion of hidden information for classification/tracking in documents when conditions are met | ||
| Applying Security Levels | Applying Security Labels | Automatically apply security level labels to documents when conditions are met | ||
| Maintain State | Exception Passing | Maintain current status without applying additional policies when conditions are met | ||
| Document Events | Trigger Event | Automatic execution of follow-up policies upon events such as encryption, decryption, and capsule export. |