Cryptzone Secures Data from Creation to Completion with Security Sheriff and Microsoft Azure Information Protection (AIP)

Share Article

Company to Exhibit Integrated Solution at Microsoft Ignite Conference

Cryptzone Logo

Cryptzone reduces the enterprise attack surface by 99% with its secure network access solutions.

Cryptzone is helping Microsoft customers natively harness the benefits of AIP wherever they may be. - Barry Field, CEO for Cryptzone

Cryptzone, a provider of dynamic, context-aware security software, today announced a native integration between the company’s Security Sheriff product and Microsoft’s new Azure Information Protection (AIP) offering. The integrated solution allows for dynamic protection of documents across their lifecycle. Cryptzone will be demonstrating the integrated solution this week at the Microsoft Ignite conference (Booth 2030) in Atlanta, GA.

AIP allows organizations to classify, label and protect data at the time of creation or modification, enabling users to determine security levels when the file is created. Security Sheriff extends this capability by using the AIP classification to secure the document using Microsoft’s RMS encryption throughout its lifecycle, be it inside the organization or outside. Security Sheriff also dynamically adjusts the security applied to the file, based on how, where and by whom it is used, and makes classified files “invisible” except to those who have access.

“By natively extending AIP’s classification and protection throughout the document lifecycle, Cryptzone is helping organizations flexibly leverage AIP’s classification and protection without any extra work,” said Gagan Gulati, Principal Group Manager, Azure Information Protection at Microsoft. “Security Sheriff helps organizations balance the desire to deliver access and enable collaboration with the need to secure documents both within and beyond their company borders.”

“In an increasingly on-demand, access-anywhere environment, organizations are looking for ways to provide employees, partners and other third-parties with access to information, while at the same time protecting that same information from falling into the wrong hands,” said Barry Field, CEO at Cryptzone. “By taking AIP classification, and leveraging it to dynamically adjust user access and protection, we are helping Microsoft customers natively harness the benefits of AIP wherever they may be. For example, a confidential patient file that a doctor may access and edit in the office may dynamically be adjusted to “read-only” access, without the ability to print, edit or otherwise be transferred when that same doctor is reviewing that patient’s record from home while on call.”

When the user checks a file into SharePoint (online or on-premises), Security Sheriff:

  •     Consumes the AIP classification and label into its rules, controlling individual user’s file access in real time.
  •     Scans the file to ensure that the user’s classification meets minimum corporate standards, enforcing business policies while allowing manual augmentation of security.
  •     Automatically applies Microsoft RMS encryption when necessary, based on the AIP classification or any other file metadata, and user context properties with no additional user action needed.
  •     Applies AIP’s classification and protection levels while the file is used and shared within the company.
  •     Throughout the file’s lifecycle within the company and beyond, Security Sheriff builds upon AIP’s protection to manipulate in real time the ways all collaborators can use and share a file based on contextual metadata. This allows businesses to automate data security policies to control sensitive data in situations such as:
  • What types of access a particular user should have from a particular device at a particular location.
  • Whether a file should be encrypted when it is downloaded, or if it should be downloaded to a particular device at all.
  • Whether a file should be printed, even based on location.
  • Whether a file should be emailed to a particular recipient and/or encrypted when sent.

Security Sheriff requires no additional client side applications, so any device that supports Microsoft products will receive the same security, enabling data loss prevention on unmanaged devices. It works within Microsoft’s AIP framework to leverage existing work a company might have done for user permissions, RMS templates and policies, file classifications, and SharePoint and Office 365 security policies. For more information, visit To schedule a demo of the integrated solution at the conference, contact

About Cryptzone
Cryptzone reduces the enterprise attack surface by 99% with its secure network access solutions. Using a distributed, scalable and highly available Software-Defined Perimeter model, Cryptzone protects applications and content from internal and external threats while significantly lowering costs. In cloud environments including AWS and Azure, Cryptzone provides user access control, increases operational agility and improves the ability to meet regulatory and compliance standards. More than 450 companies rely on Cryptzone to secure their networks and data. For more information visit

Media Contact
Jessica Ann Morris
ZAG Communications for Cryptzone

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Jessica Ann Morris
+1 781.608.0499
Email >

Jason Garbis
Visit website