Approaches to Data Leak Prevention
Network-based DLP
Advantages
- Does not require installation of agents on all nodes
Challenges
- No coverage for USB, local devices on desktops
- No coverage for mobile \offline users
- Potential for scalability issues
- Can require additional devices to protect: Web proxy, MTA, etc
Client-based DLP
Advantages
- Only way to protect mobile laptops, desktop devices (USB etc)
- Intercepts at point of use: encrypted HTTPS, IM sessions, email, etc
- Helps to educate employees on proper data usage policies
Challenges
- Requires client on every endpoint
Trend Micro Provides Ten Vector Protection
Network/Applications Controlled
- Email: Microsoft Outlook, Lotus Notes, and SMTP Email
- Web Mail: MSN/Hotmail, Yahoo, GMail, AOL Mail, +
- Instant Messaging: MSN, AIM, Yahoo, and more
- Network Protocols: P2P, FTP, HTTP/HTTPS, and Skype
Endpoint Devices Controlled
- USB, CD/DVD, COM & LPT ports, removable disks, floppy, infrared and imaging devices, print screen, modems, PCMCIA, Active Sync, Cut & Paste