Box, Dropbox, SkyDrive, Google Drive, Syncpliclity… you name it.
The cloud is transforming business, and cloud services are expanding into both personal and enterprise environments. There are many benefits associated with cloud storage – large file storage capacity, easy access from any device, allows instant sharing of the data to 3rd parties… to name a few. However, privacy and compliance also become a concern when company sensitive files and personal information are to be stored in the cloud. Corporations risk losing control of the data that is being sent to the cloud and stored on remote servers hosted by 3rd party vendors.
Controls need to be put in place to prevent unauthorized sensitive data leaving the company. One option is to inspect, detect, report all sensitive data being transferred to the cloud services. The latest release of McAfee DLP Endpoint 9.3 offers a new Cloud Protection Rule that can help companies manages files uploaded to cloud applications. The Cloud Protection Rule inspects all the files in the upload folders for Google Drive, Dropbox, SkyDrive, Box.net, and Syncplicity. There are many flexible actions such as Monitor, Notify user, Request Justification, and Store evidence. Content categories, file types, file extensions, document properties, encryption types can be filtered and examined.
With this new Cloud Protection Rule and other existing DLP features, enterprises now can be even better protected when it comes to storing and sharing information over the cloud. For example, from the endpoint, DLP Endpoint agent can inspect file before uploading to cloud via Web Protection Rule and the new Cloud Protection Rule. For traffic going via the network, McAfee Network DLP can examines content via VPN and encrypt content if needed. To prevent unauthorized download from the cloud, McAfee OTP can authenticate users and access; DLP Endpoint agent can tag cloud-based application, e.g. mcafee.box.net, and further control the flow of content.