How well do information leak prevention products protect critical data?

How well do information leak prevention products protect critical data?

By Mike Chapple | Mar 15, 2007

Thumbnail: 

How do information leak protection products use the network, and are they effective in protecting critical data? Protecting organizations against an information leak is quite a challenge, and the technology to assist with this herculean task is relatively immature. However, there are several products on the market today that can help achieve this difficult goal.

The mechanisms used by content protection systems vary from one product to another. Most are based upon pattern matching or signature detection. The former requires administrators to provide patterns (e.g. regular expressions) that describe sensitive data. This technique is especially useful when you're attempting to detect outbound flows of Social Security numbers and/or credit card information. For example, you might use the regular expression 'd{3}-d{2}-d{4}' to match a standard U.S. SSN consisting of ten digits hyphenated in the form xxx-xx-xxxx. Signature detection systems typically require administrators to 'register' sensitive content with the protection system. Administrators can do so by uploading individual files, scanning a file share or integrating with a document management system.

When using a content protection system, it is important to have realistic expectations. These systems tend to require a great deal of administrative attention to install, configure/tune and operate. If you expect a 'plug and play' product, you'll likely be disappointed.

More information:

  • Learn how Google Notebook can expose an enterprise's confidential information.
  • When building a database application, sensitive data is often made available unintentionally. In this tip, Michael Cobb explains how the information is leaked.

    • Similar

    Related Articles

    Add comment

    Post a Comment

    The content of this field is kept private and will not be shown publicly.
    • Web page addresses and e-mail addresses turn into links automatically.
    • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <a> <p> <span> <div> <h1> <h2> <h3> <h4> <h5> <h6> <img> <img /> <map> <area> <hr> <br> <br /> <ul> <ol> <li> <dl> <dt> <dd> <table> <tr> <td> <em> <b> <u> <i> <strong> <font> <del> <ins> <sub> <sup> <quote> <blockquote> <pre> <address> <code> <cite> <embed> <object> <strike> <caption>
    • Lines and paragraphs break automatically.
    • Use <!--pagebreak--> to create page breaks.

    More information about formatting options

     

    Similar

    Related Articles

    knowledge_central_tab

     
     
    Knowledge Central
    Today's top security priorities
    Attacks based on vulnerabilities in websites are skyrocketing, and not many solutions are available to protect organizations against them. How do you deal with this and other key security issues today?
    Taking a holistic business-centric approach to security
    Today’s CIOs face multiple challenges, including the need to innovate in an extremely competitive business climate, address highly dynamic regulatory and compliance challenges, speed ROI to counter shrinking IT budgets, and secure their organizations against a wide barrage of sophisticated threats.
     
     
     
    UTM product offers Logansport Savings Bank superior protection
    Astaro Security Gateway’s IPS was able to block attacks that other intrusion prevention systems (IPS) missed at Logansport Savings Bank.
    Hong Leong Financial opts for Juniper Networks at new Malaysia head office, data center
    Hong Leong Financial Group Berhad builds complete and seamless data center and office network infrastructure with Juniper switches, security devices and Junos software.
     
     
     

    Recent popular content

    Most Read
    Using Scapy to test Snort IDS
    Cybercriminals target healthcare records
    PCI tokenization on the rise
    Microsoft addresses Windows and Office vulnerabilities
    Top 10 tips for protecting sensitive data from malicious insiders

    Site map
    Search Security Asia
    About Us
    Print/Digital Subscription
    Sales
    Feedback
    Security Tips
    Expert Opinions
    Research
    White Papers
    Case Studies

    Blogs
    Topics
    Application security
    Disaster recovery and business continuity
    Identity management and access control
    Information security careers, training and certifications
    Topics
    Network and Internet Security
    Security best practices
    Security threats
    Surveillance and facilities management
    Media
    Videos
    Podcasts
    Webcasts
    News
    RSS