The Governance domain allows companies to launch enterprise-wide new product introductions on-time and on-budget. Within Governance are these sub-processes: Requirements Management, Portfolio Configuration, Program Management, Decision Support Business Intelligence, and Compliancy.
ENOVIA IP Export Classification
ENOVIA® IP Export Classification manages business rules to authorize, and prevent unauthorized, disclosure of intellectual property within the ENOVIA system.
ENOVIA IP Export Classification allows organizations to properly protect intellectual property (either their own IP or that of others) from unauthorized disclosure within their ENOVIA system. It complements the general–purpose access controls available with ENOVIA® Studio Modeling Platform (DTE), which is based on an object type’s maturity in its lifecycle and a user’s assigned roles and/or groups. By contrast ENOVIA IP Export Classification implements the description of category-specific rules that must be met by any user trying to access an item. The classifications typically affect many different item types (e.g. part, requirement, specification, etc.) and apply regardless of the items’ maturity or status.
Successful operation of a multi-party Product Lifecycle Management (PLM) system includes proper protection of the intellectual property (IP) of the parties involved. The IP may belong to a commercial organization or its disclosure may be restricted by a government. In all cases, the need is to prevent exposure of information to unauthorized individuals or information transfer to unauthorized locations.
ENOVIA IP Export Classification utilizes a system of classification of information items in ENOVIA in order to store pertinent information about the security rules of each category and provide that information to the protection mechanism in the companion ENOVIA® IP Export Control product. The classified information items can either be documents containing files or pure metadata and can either be native data within ENOVIA PLM or objects federated from external systems.
This method of authorizing access to data items means that an organization can have a single ENOVIA system to manage all relevant product data in the enterprise and safely share the system with all manner of people, regardless of their organizational affiliation, nationality or physical location. Without such a capability, organizations are forced to protect IP by storing it in physically separate systems – with all the inconsistency, process delays and extra overhead costs these create.
- Companies can protect electronic IP in a robust and consistent way while minimizing the costs of doing so
- Customers, partners, suppliers and employees can all operate in one PLM environment while protecting each party’s IP
- Many kinds of data can be protected with one mechanism yielding more reliable and auditable IP protection
- Multiple systems and data stores used previously for IP protection by physical data segregation can be decommissioned
- Setting up the IP classifications and access criteria is all in the hands of the responsible business people, not the IT team
Define IP Security ClassificationsENOVIA IP Export Classification is used by the usually small group of people who are responsible for enforcement of various kinds of IP protection. The product is delivered with a set of pre-defined security classes, each with a unique set of credentials or conditions that must be met by a user to gain access to the information in the class. The classes can be modified or new ones created by the users of ENOVIA IP Export Classification. Among the user credentials that are used to evaluate whether to show an item of information include citizenship, country-of-birth, organization affiliation and current (country) location.
Granular Denied-Access ControlThe customer can configure what behavior is desired when access is denied by IP classes. Items can be completely hidden from users – they appear not to exist at all – or they can be exposed in a limited way. Denial of access behavior is controlled by policy settings made with either this application or the ENOVIA® Studio Modeling Platform. Access denial results in: • The user sees nothing when “no-show” is set • The user sees the Type, Name and Revision of the item when “show” is set • The user sees the Type, Name and Revision of the item and can navigate to its attributes when “show” and “read” are set. • Generally, the file content of an item is the information to be denied by this mechanism, Therefore “checkout” is usually not set, as are most other settings.
Access ExceptionsIt is common to create exceptions to the rules. In commercial settings the exceptions are often handled with Non-Disclosure Agreements (NDAs) – in which one company grants another company (or selected people within it) access to some IP. In the context of government controls, a common mechanism is to grant an export license to waive the normal restrictions under certain, specific conditions. Such exceptions are recorded using ENOVIA IP Export Classification and are automatically respected by the checking mechanism in ENOVIA IP Export Control, which is the complimentary product for enforcing the export classifications. ENOVIA IP Export Classification has can list the items covered by the exception and the people or organizations granted the access by the exception. The exceptions can also contain the documents (e.g. an NDA agreement, an export license) on which they are based and which they are designed to implement. The exceptions have their own lifecycles and properties and can participate in any relevant business processes for submission and approval.
AdministrationSome functions which can also be performed by IT personnel using other tools are available to IP and export control professionals using the Web interface. Functions to audit and modify the administrative policy definitions for objects are available to control authorization by security classes. The capability does not expose the whole policy definition. Therefore, the policy settings made by IT are protected from inadvertent modification by the IP control team. Additionally, logs that record file transfers between sites and the location settings of users during login are available to both IT and IP professionals.
The Role of ENOVIA V6 and PLM 2.0ENOVIA IP Export Classification supports PLM 2.0, product lifecycle management online for everyone, and the ENOVIA V6 values, which are: • Global collaborative innovation • Single PLM platform for intellectual property (IP) management • Online creation and collaboration • Ready to use PLM business processes • Lower cost of ownership.