BORDERWARE DATA LOSS PREVENTION

Sensitive information enters and exits company networks every day. It is a necessity that makes businesses function effectively and efficiently in today's environment. It is also a security threat that is growing exponentially. Data loss or leakage occurs in every organization either unintentionally or maliciously. The mediums for content to escape the grasp of the IT department are vast with the explosive use of wikis, blogs, pop mail (such as Hotmail), and social networks, not to mention email which is the largest violation medium. This becomes a significant problem and risk as organizations are managing the ever-expanding spectrum of government regulations and company privacy concerns with such issues as HR, legal and intellectual property, and general confidential information of the business. Data loss prevention has now become a critical tool that is used to accelerate business, protect your organization, and ensure privacy.

BorderWare Data Loss Prevention has been specifically designed as a compliment to your existing solutions to enable your organization to leverage data loss prevention as a tool for remediation of policies, content security and protection from data leakage. It enables enterprises to prevent the loss, leakage or exposure of sensitive, restricted, and inappropriate content across multiple messaging and Web channels (data-in-motion) that account for 83% of all data loss violations.

BorderWare Data Loss Prevention integrates into the BorderWare Security Platform for inspection, discovery and remediation of outbound content and messaging. The result is an automatic, instant-on solution that can block, quarantine, allow, encrypt or reroute data-in-motion based on policies you set.

BorderWare Data Loss Prevention provides:

Remediation Based on Policies
Email Encryption
Comprehensive Protection to Eliminate Gaps
Content and Contextual Analysis
Instant-On Data Loss Prevention

Remediation Based on Policies

It is well-documented how compliance violations, unauthorized data losses and privacy leaks cost organizations money and time. With BorderWare data Loss Prevention, you can protect data-in-motion losses and leaks that account for nearly 83% of all data loss violations. In order to provide a solution that is a tool and not a monolithic, costly standalone technology, BorderWare integrates Data Loss Prevention into the BorderWare Security Platform for inspection, discover and remediation of outbound content and messaging. The result is an automatic, instant-on solution that can block, quarantine, allow, encrypt or reroute content. Included with the BorderWare Data Loss Prevention are the pre-defined dictionaries for HIPAA, PCI, GLBA and other regulations that you can use, modify or you can create your own for policy management.

Email Encryption

The BorderWare Email Encryption solution is tightly integrated into the BorderWare Security Platform appliance to enable instant-on security for confidential, regulated and business-prudent data. BorderWare Email Encryption provides an easy to use, secured Envelope for enterprises that do not want the burdens and costs associated with traditional encryption deployments and administration, but require message security for privacy and compliance with business-class features of reliable read receipts, secure replying and forwarding, message expiration, customized branding of the Envelope by your business, and message recalling. The encrypted Envelope does not use clients or certificates so it does not require a pre-exchange of credentials. It is agnostic to the email and OS environment to allow the secured message to be sent to any email recipient at any time, it can be securely delivered to mobile devices like the BlackBerry, and it encrypts the entire payload including attachments.

BorderWare Email Encryption is a valuable tool for the following:

Compliance regulations including HIPAA, Sarbanes-Oxley, the Gramm-Leach-Bliley Act, the PCI Data Security Standard, PIPEDA, California Senate Bill 1386 and other state data privacy laws, SEC regulations, US Federal employment standards, UK Data Protection Act, Safe Harbor Act and the EU Data Protection Directive
Intellectual property including financial statements, intellectual property, mergers and acquisitions, sales and marketing plans, human resources and legal agreements and correspondence
Privacy data including customer names, addresses, government ID numbers, credit card numbers, account numbers, pass codes, health and human services and human resources

Comprehensive Protection to Eliminate Gaps

When investigating the various methods for data-in-motion protection of data leakage, it is vital to evaluate the entire landscape of content that employees use today. Today's employee has instant access to the Web and email through which content can escape, including sending data via pop mail systems such as Hotmail®, wikis, blogs, and the sending of messages and files via email to unlimited, unknown and mostly unrestricted recipients. This fact highlights the risks of DLP as a silo, versus a consolidated platform. The security and administration risks are gaps that place policies into various places in the network versus a single location. Further broadening the gap are disparate scanning of email and Web mediums, and reporting DLP activities and violations across multiple protocols and technical silos. With the BorderWare Security Platform, DLP is provided for both email and Web protocols in a single administrative access point for creating, managing and enforcing policies for protecting your organization from leakage. BorderWare Data Loss Prevention is not only transparent from end-users as a gateway appliance, it provides effective and efficient security.

Content and Contextual Analysis

With the BorderWare Security Platform, deep content inspection is performed for email and Web traffic using a content and contextual methodology. BorderWare Data Loss Prevention scans all email and Web traffic, including files and attachments, in an effort to discover violations, but it goes further by also inspecting the context of the traffic. Inspection of context enables BorderWare to inspect who is sending the content and where or whom the content is being sent to, which is vital in determining if the content is a violation or not, and the proper remediation tactic to employ. For example, if the CFO is emailing an attachment that contains sensitive financial data to the business auditors, that context is vital because the proper policy and remediation would be to log it for reporting and then encrypt the email, including the attachment, for delivery to the auditor.

Without context, a typical data loss prevention system would easily block or quarantine this important communication, thus impeding business processes. The opposite scenario can also be true, if, by policy, an employee in customer service is sending the same document to an unknown or unauthorized recipient, the communications should be blocked or quarantined to prevent the leakage of this data.

Instant-On Data Loss Prevention

Obviously, data loss prevention and content filtering is a best practice for privacy and security of your email and Web content and messaging. However, getting started with the policy creation often is a barrier for many enterprises to use data loss prevention as a tool. The BorderWare Data Loss Prevention solution has predefined dictionaries or lexicons included within the policy management console that allows your organization to instantly enable data loss prevention security. These dictionaries were created in conjunction with customers, analysts and strategic partners that specialize in compliance regulations and policy development including for example, the American Hospital Association's™ endorsed HIPAA lexicon, the ecfirst.com™ PCI and international lexicons, and others. With these dictionaries, your organization can customize, change or alter the weighted scores for 100% control of your corporate policies.