Hello again,
I feel the need to update this older topic: https://www-secure.symantec.com/connect/forums/dlp-105-and-hidden-textcolumns-ms-office
So, in that topic I had 2 problems:
1st, the hidden text in MS Office Word wasn't detected by SymcDLP 10.5
and
2nd, the password-protected ZIP archive wasn't detected by SymcDLP 10.5
OK, now the results with Symantec Data Loss Prevention 11:
In the 1st case the problem IS solved, the hidden text in MS Office Word is detected, an incident is created. Good!
In the 2nd case the problem IS NOT solved, an password-protected ZIP is not detected. Attached you can find a screenshot with my simple policy and a step-by-step creation of encrypted ZIP. I made the test twice, first with 7zip and then with WinRAR. The result is the same, no incident!
Additional info: The Endpoint agent monitors clipboard (copy-paste)! The encrypted MS Word/PowerPoint is detected and an incident is created. So, I think there is a problem just with "Password-Protected ZIP Archive".