Data Loss Prevention

 View Only

  • 1.  How to report on data going to "unsupported" computers on the local network?

    Posted Mar 03, 2013 01:06 PM

    We are going to roll out Windows 8 to some computers which the last I read is not supported by the DLP agent. So, for now, there can be no DLP agent for that group of computers.

    We are assuming DLP support for Windows 8 is coming soon and will deploy the new agents then.

    We also have computers on the network from business partners where we don't manage them or and may not be able to install a DLP agent even if the OS they use supports it.  They can access files using their employer's laptops by connecting to our network shares and mapping network drives using their domain user credentials (for our domain) even though their laptops are not members of our domain.

    Users could also use a smartphone and install a file-browsing app to copy files to an Android or iPhone or tablet etc.. 

    I understand that once data is copied to an unmanaged device, there is nothing that can be done to it by DLP.  So, what product monitors data being copied to devices that don't have the DLP agent installed so we will at least know what was sent to those devices and possibly set up rules to either log reports on what was sent to those devices or block certain data from being copied to unmanaged devices over the network.

    Is this a scenario Network Monitor handles?



  • 2.  RE: How to report on data going to "unsupported" computers on the local network?
    Best Answer

    Posted Mar 04, 2013 12:18 AM

     

    yes, even though the machine that have no support for DLP agents and not having agents to monitor user activity but it can be monitor through the networks monitor/prevent as they will use compan's network to do data transfer activity.
     
    At the same time either u can implement DLP for smartphoen/Tablet or restrict the unmanages device or website through which there is chance of data leakage for this read below how u can do this.
     
    https://www-secure.symantec.com/connect/forums/dlp-endpoint-endpoint-protection-interoperability
     
    https://www-secure.symantec.com/connect/forums/can-you-configure-specific-dlp-endpoint-agent-block-copy-removable-media#comment-7103551
     
    https://www-secure.symantec.com/connect/forums/does-symantec-dlp-block-data-leakage-dropbox-googledrive-etc


  • 3.  RE: How to report on data going to "unsupported" computers on the local network?

    Posted Mar 04, 2013 12:30 AM

    My understanding is that DLP for tablet was not a practical or useful product for most companies because the list of products it supports is so limited ( outdated iOS 5 only??) and it requires users to go through your proxy to connect to the Internet at all times even when they are away from the office and not using any company resources such as using Google Maps or playing an online game at home on the weekend.

    I cannot see this implemented in many places in it's current form.