IP Classification and Protection On Premise

IP Security Manager

IP Security Manager is responsible for maintaining the security rule and exception framework for classifications to authorize and prevent unauthorized disclosure of intellectual property (IP) within the 3DEXPERIENCE® platform.


IP Security Manager enables organizations to classify data properly with defined security rules (based on organization, citizenship, physical location and their combination) and exceptions in an evaluated expression. This classification enables the enforcement filter to protect data from unauthorized disclosure within the 3DEXPERIENCE® platform. This classification framework complements the general purpose access controls available with the 3DEXPERIENCE platform and implements the description of category-specific rules that must be met by any user trying to access a data item.

IP Security Manager defines and maintains the classification of information items in 3DEXPERIENCE platform along with the classification including the associated security rules and exceptions. That classification information is used by the platform option IP Controlled Access to determine whether to authorize or refuse access to the requested data item.

This method of classification and enforcement for data items in the 3DEXPERIENCE platform (internal or by federation) means that a single 3DEXPERIENCE platform instance can manage all relevant product data in the organization’s enterprise and safely share that information according to their organization, nationality or physical location. Without this capability, organizations may be required to protect IP by storing the data in physically separate systems — with all the inconsistency, process delays and extra overhead costs these create.

Key Features & Benefits:

  • Companies can protect electronic IP in a robust and consistent way as a standard across the entire platform.

  • Customers, partners, suppliers and employees can work in one environment while protecting each party’s IP.

  • All types of data in the platform can be protected with the same approach and allow audit review of users and access in one environment.

  • Multiple systems and data stores used previously for IP protection by physical data segregation can be decommissioned.

  • The responsible business people can define the classifications and security rules and exceptions, as well as the item data and auditing, from the environment without the IT team.