The security gaps and the lack of privacy protection is a
well-known weakness of search engines that were originally developed
for the Internet at a time when such features were neither required
nor widely available (see, e.g. Gartner Research, 13 Mar 2006)
Today, anyone using an enterprise search engine should access only
those documents for which he has the necessary access rights of the
underlying network ("File system security"). Often, however,
this requirement is not always met - even if the supplier claims to
have a "sophisticated security system." It might happen that
the access rights of some files must be changed by the system administrator
or by a user (e.g. because a search engine has displayed search results
to unauthorized users). In such cases, the enterprise search engine
should react immediately to the modified access rights. InfoCodex is
one of the very few systems supporting this feature.
To ensure safe handling of highly sensitive data and privacy, InfoCodex
has additional means through creating protected sub-domains for which
only selected users/groups own the full sovereign rights. Even
system administrators have no access rights to the search and viewing
functions in those protected sub-domains.