DLP tools deliver strong endpoint protection

By Susan Perschke, Network World |  Security, Data Loss Prevention

Websense provided us with what they unofficially call a 'Protector,' essentially a preconfigured Windows 2008 server running its Triton Data Security Suite. The server sits in line with the corporate network like any other server.

Even if the installation of the Triton Data Security Suite requires a number of steps, it was fairly straightforward and we were up and running in less than an hour. We configured the Test LAN as a logical business unit with certain geographical policy preferences.

An endpoint agent is installed on each 32- or 64-bit client. After installation of the agent, the client machine synchronizes with the Websense Triton server, and events on the client are monitored and acted upon according to the policies and rules configured for each client machine.

Websense passed all the tests we threw at it until the Chrome browser test. We were able to upload a sensitive document using the Chrome browser, although as was the case with other vendors who failed the Chrome test, the same test data was blocked successfully using both Internet Explorer and Firefox. Websense quickly provided a workaround, allowing us to clear the flag on this test.

Websense offers mobile endpoint protection through its Triton Mobile Security. This is a cloud-based solution provided via VPN so any registered devices, BYODs or company owned, can be registered and all traffic is routed through the VPN. This allows Triton to block access to websites and apps as well as provide full email DLP protection. We tested the mobile email protection with our lab iPhone and confirmed that we were not able to send or receive emails containing information in violation of the PCI-DSS and HIPAA policies that were set up for use in our tests.

The Websense Triton server comes with a rich DLP report catalog including numerous pre-defined reports and the ability to drill down to various detail levels. The reporting feature also allows the admin to take action on items that need to be resolved. Some customization is available and reports and data can be exported to several formats including PDF and CSV.

Pros:

" 1,600+ predefined policies

" Optional configuration for geographical, logical or operational units

" Powerful, intuitive and comprehensive system console

" Ability to launch corrective action from inside the reporting module

Cons:

" Doesn't natively support all popular browsers (namely Chrome) - the vendor is looking into this for a future release

How to choose a DLP Product


Originally published on Network World |  Click here to read the original story.
Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+

Answers - Powered by ITworld

Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+

Ask a Question
randomness