to day i want to cover Data Loss Prevention (DLP). By the end of this post you should be know what DLP is and how to establish policies to protect your sensitive data. Lets get started ... What is Data Loss Prevention (DLP) Data loss prevention (DLP) is an important issue for message systems because of the extensive use of email for critical communication that may include sensitive data. In order to enforce compliance requirements for such data, and manage its use in email, without hindering productivity, DLP features make managing sensitive data easier than ever before. The technological means employed for dealing with data loss incidents can be divided into the following categories: * Standard security measures, such as firewalls, intrusion detection systems (IDSs), and antivirus software, are commonly available mechanisms which guard computers against outsider as well as insider attacks. * Advanced security measures, which employ machine learning and temporal reasoning algorithms for detecting abnormal access to data or abnormal email exchange, honeypots for detecting authorized personnel with malicious intentions, and activity-based verification for detecting abnormal access to data. * Designated DLP solutions, which detect and prevent unauthorized attempts to copy or send sensitive data, intentionally or unintentionally, without authorization, mainly by personnel who are authorized to access the sensitive information. DLP policies are simple packages that contain sets of conditions, which are made up of transport rules, actions, and exceptions that you create in the Exchange Admin Center (EAC) and then activate to filter email messages and attachments. You can create a DLP policy, but choose to not activate it. This allows you to test your policies without affecting mail flow. DLP policies can use the full power of existing transport rules. One important feature of transport rules is the approach to classify sensitive information that can be incorporated into mail flow processing. This new DLP feature performs deep content analysis through keyword matches, dictionary matches, regular expression evaluation, and other content examination to detect content that violates DLP policies. The latest release of Exchange Online adds Document Fingerprinting, which helps you detect sensitive information in standard forms. Three different methods exist for you to begin using DLP: * Apply an out-of-the-box template supplied by Microsoft. The quickest way to start using DLP policies is to create and implement a new policy using a template. This saves you the effort of building a new set of rules from nothing. You will need to know what type of data you want to check for or which compliance regulation you are attempting to address. * Import a pre-built policy file from outside your organization. You can import policies that have already been created outside of your messaging environment by independent software vendors. In this way you can extend the DLP solutions to suit your business requirements. * Create a custom policy without any pre-existing conditions. Your may have your own requirements for monitoring certain types of data known to exist within a messaging system. You can create a custom policy entirely on your own in order to start checking and acting upon your own unique message data.
Posted on: Mon, 01 Sep 2014 07:34:20 +0000
Trending Topics
Recently Viewed Topics
© 2015