INTRODUCTION
In the early 1980s securing a computer, printer or fax machine meant placing it behind a locked door. That was before computers were on every desktop, and before the advent of multi-functional products (MFPs). The MFP consolidates functionality into a single, space-saving platform, enabled businesses to address varied document processing needs, specifically walk-up copy and fax operations and network scan, fax and print functions. From document creation through output and distribution, the MFP plays a pivotal role in today’s connected workplace.

Indeed, as a centralized document processing hub, the MFP has transformed the office landscape by speeding the generation and dissemination of information. In the pre-Internet era documents were carried by courier or express mail services. Now those same documents are easily converted into electronic files, via the MFP, and communicated locally or globally–in an instant. As technology has evolved, so too has the speed at which business moves.

This shift from paper-based to electronic business processes presents formidable challenges for IT security professionals, and others tasked with safeguarding information assets. With nearly instantaneous dissemination capabilities, business-critical documents can be routed to unauthorized individuals in seconds.

To remain competitive in today’s challenging economic climate, organizations–now more than ever– have to protect information assets from theft or loss. Information security is particularly critical for businesses subject to a labyrinth of federal regulations, such as HIPAA, SOX and GLBA. In this white paper, we will examine the issue of regulatory compliance as it relates to office technology, and thus provide guidance on security solutions that can help support enterprise-wide compliance initiatives.

Integrated
Document Management

The new DocuWare 5 document management system is state-of-the-art software for integrated document management. It can automatically process any type of document regardless of its source; with internal control procedures that help you meet audit requirements. DocuWare 5 imports them, classifies them, adds a fulltext index and makes them available for onward processing.

Additional Records Management functions ensure that all access is secure, controlled, and logged. Enhanced with workflow functionalities, Web Content Management and universal integration functions, DocuWare 5 provides powerful Enterprise Content Management (ECM) functionality for enabling expansion throughout an organization.

DocuWare 5 offers comfort and security. Even the most exacting users will be impressed not only by the comprehensive features, but also by its userfriendliness and simple administration—all of which, together with the extensive integration capability and optimum security, combines to make DocuWare 5 a product that can grow with your requirements, well into the future.

Introduction
The Payment Card Industry (PCI) Security Standards Council™ guides the efforts of Chief Information Security Officers, Compliance Officers, and others who protect cardholder information for payment card issuers, merchants, banks, processors, and service providers. The Council's PCI Data Security Standard (DSS) is a comprehensive set of requirements for security infrastructure, policies, and practices, intended to improve the security of cardholder and account data throughout the industry.

As the PCI Council completes its fifth year of operation, this paper reviews:

• successes and setbacks of the PCI Data Security Standard

• implications of the Council's new Prioritized Approach to DSS

• practical steps professionals can take to improve data security and maintain PCI DSS compliance

• effects of emerging technologies and legislation

This paper is an update and guide, not a tutorial on PCI DSS. Readers new to the standard should consult the excellent materials1 available from the PCI Security Standards Council itself, or one of the many introductory guides available from solution providers.

Compliance and Security
Few doubt that PCI DSS has helped standardize industry security practices and improve data protection. Often cited as a model for industry self-regulation, DSS helps card brands, issuing banks, merchants, and others reduce direct losses from fraud, and risks of reputation loss and litigation from data security breaches. Industry members comply with the standard out of direct financial self-interest, or indirectly to support the interests of powerful partners. DSS has been especially effective at improving security practices on the industry's front lines. In the words of Ellen Richey, Chief Risk Officer for VISA, "More than 90% of the largest card accepting merchants and about 97% of processors in the United States have validated compliance with PCI. The companies that fully embrace it are protecting themselves every day by maintaining their defenses, scanning systems, detecting anomalies and addressing threats."3

1 Objectives of This White Paper
The purpose of this white paper is to present the security measures within the DocuWare software. The paper includes a discussion of the measures undertaken to achieve access security and to prevent downtimes – or at least to minimize their adverse effects on users. It includes all preventive measures against accidental or deliberate manipulation of managed content and against data loss caused by system failure. Security features also include measures to ensure data protection and the traceability of events within the system.

It mentions the underlying technologies and describes how they are used by the DocuWare system. This should provide readers with a technically sound understanding of the DocuWare system and the security it offers.

This document is intended for clients (users), consultancy companies, IT magazines and distribution partners. It assumes a certain level of technical knowledge about the structure of modern software applications, ideally of document management systems. Detailed knowledge of current or previous DocuWare systems is not required.

2 Introduction
The larger and more complex file cabinets become, the more extensive their security requirements. DocuWare provides comprehensive features relating to authorization and access security and protection against failure

An important element of the DocuWare system is Authentication Server, which not only ensures correct authentication, but also provides functions which protect against failure. To avoid the unauthorized use of DocuWare functions, the DocuWare servers contain the following security features:

The Situation

Muratec is one of the leading manufacturers of printers, fax machines and copiers. During the 1990s, the client made a critical strategic decision: since stores like Offi ce Depot and Staples were eating into margins and driving down prices, they decided to withdraw from the retail channel and focus on direct sales. They needed a robust, comprehensive website to support this decision.

The Solution
RSW identifi ed the key success factors:

- Benchmarking
- Clarity
- Process
- Coordination

RSW built a site that would accommodate the needs of both customers and a third-party sales force. To ensure that the site was the “best in the industry,” we analyzed competitor sites using over 20 different benchmarks, and made sure that the Muratec site met or exceeded the top performer in each category.

MANUFACTURING INSIGHTS OPINION

Manufacturer supply chains are becoming longer and more complex and have real challenges getting timely and accurate information to the right place at the right time. These globally distributed supply chains present the largest challenge to the transportation and logistics organizations whose efforts to make operational and execution processes more efficient and effective are regularly hampered by late, inaccurate, and incomplete data caused in large part by the inefficient transfer of logistics data through the use of manual forms and input to capture that data.

Although the use of digital capture devices appears slightly more mature in the transportation and logistics part of the supply chain, there is still the view that substantial improvements can be made in the business process. While nearly 80% of logistics functions still use paper forms and 52% of the data is input manually, more worrisome is that one-fifth of the data captured manually is not entered at all. This leaves only 28% of the data being entered either with a digital scanning process or through the use of a digital pen. Certainly, this lack of automation is contributing significantly to the poor level of data accuracy and corresponding shipping errors within transportation and logistics.

The benefits of moving to digital capture of transportation process data are significant. Respondents identified improvements in their ability to store/retrieve information, improved process efficiency and lower costs, improved data accuracy and timeliness, as well as a more robust form of signature capture for regulatory compliance. This last point is significant as we are seeing a lot of interest in governance, risk, and compliance (GRC) in the supply chain in general and in logistics specifically. Management of trade and customs compliance, anticounterfeiting, and supply risk management are all increasingly dependent upon accurate transportation process data to function seamlessly. It is the view of Manufacturing Insights that automated, digital capture of logistics data is a critical foundational capability to effectively manage GRC and a distributed global supply network.

A Quick Introduction to Fax

What’s a fax document?
Simply put, a fax document is anything a fax user wants to fax to someone else. It can be just one page or as many pages as you need. It can be text, a drawing or even a photograph.

What’s a fax number?
Because your fax operates on standard phone lines, a fax number is just a regular phone number. And, because your fax is also a high-quality, full-featured telephone, your fax number can even be your regular phone number.

What are resolution and grayscale?
Just as cars are measured by engine size, fax machines are measured by resolution and grayscale. Resolution refers to the sharpness of a fax transmission. It’s expressed in lines per inch (lpi). There are three specific levels of resolution:

• Normal (203 horizontal ´ 98 vertical lpi)
• Fine (203 ´ 196 lpi)
• Superfine (203 ´ 392 lpi).

Grayscale levels — refers to the many shades of gray your fax machine sees on a document it’s sending. It’s likely most of your fax documents will be dark text on white paper. However, when you want to send photographs and other shaded items, you can set your fax machine to transmit in 64-scale grayscale.

The goal of OKI is to define an architectural framework that facilitates the development and delivery of educational software applications. This architecture is being generally described by two service layers defined by implementation independent Application programming Interfaces (APIs). One, Common Services, provides hooks to institutional infrastructure and other fundamental services that provide a backbone for higher level services and applications. The second layer, Educational, will bundle functionality that is of particular usefulness to the developers of various kinds of educational software applications.

By defining Application Programming Interfaces (APIs) that are not bound to any one implementation of a particular service, OKI intends to provide a boundary layer that buffers educational software from infrastructure that is localized or that might go through changes that would otherwise require major re-writes of code at an application level. The services themselves are also intended to be modular, bound together loosely through shared objects and interfaces.

The goal of all this is to facilitate development and sharing of educational software applications, which OKI commonly calls "Tools." Development is facilitated through providing a rich set of services allowing developers to concentrate on the real pedagogical aspects of design and not about basics like how to authenticate a user or where to store documents and metadata. Sharing is facilitated through the abstraction provided by APIs, allowing an application built at one institution, using a particular collection of infrastructure services, to be easily transported to another.

GLOBAL RETAIL INSIGHTS OPINION
Leading retailers eliminate processes that result in unexpected costs, poor execution, or unsatisfied consumers. Retailers that utilize assets, people, processes, and technology most efficiently will be winners, even in tough economic times. Global Retail Insights’ survey of 75 retailers regarding their use of streamlined printing and data capture technologies makes it clear that for many, there are numerous opportunities to improve. Distributed forms printing and data capture technologies reduce costs, improve process efficiency and data accuracy, and enable "green" operations.

Retailers should evaluate how they can extend the value of current investments and invest in new technology that substantially enhances data acquisition and forms processing and removes barriers to operations improvement. Improving these labor-intensive and error-prone processes will position retailers to be more customer centric, thereby freeing operations to focus more energy on serving customers well.

IN THIS WHITE PAPER
In this white paper, Global Retail Insights, an IDC company, discusses how retailers are utilizing digital capture technologies to reduce costs, improve process efficiency and data accuracy, and be more "green." Results from a survey fielded in September 2008 provide the basis for an evaluation of the current situation, benefit opportunities, and future outlook for digital capture technologies in retail.

In this white paper we explore the state of forms processing (paper and electronic) across operational areas but target forms processing that supports store operations. Based on the survey results, Global Retail Insights believes many retailers are missing a significant opportunity to improve distributed enterprise forms processing and data acquisition. We identify processes that retailers should streamline from paper to electronic forms utilizing in-store multifunction printing, dot matrix printing, on-demand printing, color printing, and digital pens.

INTRODUCTION
In the early 1980s securing a computer, printer or fax machine meant placing it behind a locked door. That was before computers were on every desktop, and before the advent of multifunctional products (MFPs). The MFP consolidates functionality into a single, space-saving platform, enabled businesses to address varied document processing needs, specifically walk-up copy and fax operations and network scan, fax and print functions. From document creation through output and distribution, the MFP plays a pivotal role in today’s connected workplace.

Indeed, as a centralized document processing hub, the MFP has transformed the office landscape by speeding the generation and dissemination of information. In the pre-Internet era documents were carried by courier or express mail services. Now those same ocuments are easily converted into electronic files, via the MFP, and communicated locally or globally–in an instant. As technology has evolved, so too has the speed at which business moves.

This shift from paper-based to electronic business processes presents formidable challenges for IT security professionals, and others tasked with safeguarding information assets. With nearly instantaneous dissemination capabilities, business-critical documents can be routed to unauthorized individuals in seconds.

To remain competitive in today’s challenging economic climate, organizations–now more than ever– have to protect information assets from theft or loss. Information security is particularly critical for businesses subject to a labyrinth of federal regulations, such as HIPAA, SOX and GLBA. In this white paper, we will examine the issue of regulatory compliance as it relates to office technology, and thus provide guidance on security solutions that can help support
enterprise-wide compliance initiatives.