Sophos adds DLP to desktop anti-malware
Sophos has added data-loss prevention capabilities to its desktop anti-malware software, the security firm says, promising gateway-based DLP in the future as well.
Endpoint Security and Data Protection 9 combines a fully-integrated desktop agent for DLP and malware protection in a single product. Rainer Gawlick, chief marketing officer for Sophos, says the desktop DLP technology is designed to monitor for sensitive content a user might transmit via e-mail, Web uploads, USB sticks or DVDs, and block it if need be. “We’re using the existing agent to scan malware and for confidential information,” he says, noting for existing Sophos endpoint-security customers, the DLP technology is a free upgrade.
[ 11 security companies to watch ]
Many DLP systems today cost hundreds of thousands of dollars; however Sophos doesn’t claim the DLP functionality it packed into Endpoint Security and Data Protection 9 is the same found in high-end endpoint/gateway DLP products.
For instance, the Sophos product doesn’t have a DLP discovery tool, and it basically works by focusing on personally-identifiable data such as credit-card and driver’s license numbers. But it allows for the creation of customized rules in order to identify and catch file data through discrete triggers, such as project codes, that could be added to documents as identifiers.
“There’s pressure increasing on customers every day to protect data,” Gawlick says. “What we’re doing is making DLP implementable. DLP is a scanning problem. We’re using the existing agent to scan for malware and scan for confidential information.”
Some organizations may find they do need more sophisticated DLP, Gawlick says, but others may find what Sophos has come up with to be “practical DLP” that makes it hard for people to violate content-protection policies.
John Raymond, IT security manager at Sacramento-based SAFE Credit Union, has long used Sophos anti-malware software in his organization, and for the past two months has been beta-testing the DLP features in Endpoint Security and Data Protection 9.
The single-agent DLP/anti-malware software from Sophos appears to have less of a software footprint and uses less CPU resources than having a separate DLP and anti-malware agent, he says. Raymond had been using another standalone DLP product he declined to name, noting there had been minor interference at times among separate agent software.
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
Network World
Powered by TwitterOn Twitter now
Network World
Brian Proffitt
Microsoft/Novell: Breaking Down the Coupon Numbers
Esther Schindler
Drupal's Dries Buytaert on Building the Next Drupal
Tom Henderson
Top Ten General Operating Systems Rants
pasmith
PS3 motion controller delayed; goes up against Project Natal
sjvn
Neolithic Windows security hole alive and well in Windows 7
claird
Perl source code comparison makes for good reading
mikelgan
Cell phones don't create stress or interrupt much
Sandra Henry-Stocker
How to: The Unix Interview
Where Google Chrome security fails: the password
I heard mention that the Chrome OS will have some sort of encryption available a la bitlocker. If it's possible to encrypt personal data using another password or key, then it may have potential for very secure data.... And Ubuntu has an 'encrypt home directory' option, perhaps google should follow suit.
- Dann
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
- Ubuntu advances: Why Ubuntu server installations will surge in 2010
- Social media marketing: How to make friends with benefits
- More...
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
