Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 5 subscribers
  • Views 7283 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Wireless Protection - Sophos UTM Visiting network + Marco Civil da internet (Brasil)

Caio Silva

Good afternoon,

Sophos UTM is not in compliance with the civil registry of the internet (Brazil) and this demand appeared in the company where I work. Today the voucher of the visitor network does not have a registration for the user to enter Name. CPF, ETC to collect visitor information. I know that the UTM does not have such functionality, more accurate of this information and maybe even integrate with some third party tool. Has anyone ever had this need?

OBs: The civil registry of the internet in Brazil requires that the access provider maintain the information of Name, CPF, ..., of users of the visiting network and today the Voucher provided by Sophos does not request any information from the user that is making use of it.

Thank you!
Google Tradutor para empresas:Google Toolkit de tradução para apps

 

 

Boa tarde,

O Sophos UTM não está em conformidade com o marco Civil da internet (Brasil) e surgiu essa demanda na empresa onde trabalho. Hoje os voucher da rede visitante não possui um cadastro para o usuário digitar Nome. CPF, ETC para coletar as informações do usuário visitante. Sei que o UTM não possui tal funcionalidade, mais preciso dessa informação e talvez até integrar com alguma ferramenta de terceiro. Alguém já teve essa necessidade? 

OBs: O marco civil da internet no Brasil exige que o provedor de acesso mantenha a informação de Nome, CPF, .., de usuários da rede visitante e hoje o Voucher fornecido pelo Sophos não solicita nenhuma informação do usuário que está fazendo o uso.

Obrigado!



This thread was automatically locked due to age.
  • 0

    Hi, and welcome to the UTM Community!  Very classy to have added the Google translation!

    I haven't played with Hotspot and One-Time Password, but, by pulling info out of the Wireless and Web Filtering logs, you might have the required information.

    Usually, such records are required to demonstrate things legally like not allowing child porn.  Perhaps a well-configured blocking of such sites would be sufficient???

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Hi BAlfson,

    I'm using Google Translate too.

    In fact, some of the information can be retrieved from the logs, but in the Marco Civil da Internet law, other information that identifies the individual, such as the national personal data record (CPF - something similar to the Social Security Card) needs to be recorded and stored for at least 1 year.

    "Usually, such records are required to demonstrate things legally like not allowing child porn. Perhaps a well-configured blocking of such sites would be sufficient ???"

    Not really, because there are several crimes that can occur that can not be blocked by the platform, such as disclosure of private images, for example, among other things. The law requires registration of all access, so that in the event of a crime being committed, the individual is identified.

    Anyway, this is a question I also have: Whether the Sophos solution or integrated with a third-party tool can help the Brazilian company meet the requirements of the law.

    Thanks

     

     

    Olá BAlfson,

    Eu estou usando o Google Tradutor também.

    Na realidade, parte das informações podem ser recuperadas dos logs, porém, na lei do Marco Civil da Internet, outras informações que identificam o individuo, como o cadastro nacional de pessoa física (CPF - algo parecido com o Social Security Card) precisam ser registradas e armazenadas por, no mínimo, 1 ano.

    "Usually, such records are required to demonstrate things legally like not allowing child porn. Perhaps a well-configured blocking of such sites would be sufficient???"

    Na verdade não, pois existem diversos crimes que podem ocorrer que não podem ser bloqueados pela plataforma, como divulgação de imagens privadas, por exemplo, dentre outras coisas. A lei prevê que exista registro de todo acesso, para que na eventualidade de um crime ser cometido, o individuo seja identificado.

    Enfim, esta é uma dúvida que tenho também: Se a solução da Sophos ou ela integrada a uma ferramenta de terceiros pode ajudar a empresa brasileira a atender os requisitos da lei.

    Obrigado

  • 0 in reply to Alvaro Rodrigues

    Hi Alvaro, and welcome to the UTM Community!

    I think this can be done in two, maybe three, ways, but I haven't experience in any of them:

    • Require a One-Time-Password to login to the Hotspot.
    • Create a portal webpage on an internal server that records the information from the user.  Redirect to that after login.
    • Modify the default_template_expanded (download on the 'Global' tab of 'Hotspots' by clicking on [Loginpage Template]) to obtain what you want.

    It would be worth contacting Sophos in Brazil to find out if someone has created one of those solutions.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML