McAfee MAP-3300-SWG Product Guide - Page 128
Task - Block a small of the financial document from being sent out of your
UPC - 731944547008
View all McAfee MAP-3300-SWG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 128 highlights
Overview of Email features Email Policies Table 103 Option definitions Option Enable Data Loss Prevention Document match percentage Definition Select to activate the Data Loss Prevention policy settings The percentage of the original registered document which must be seen in order to trigger DLP. For example, if you register two documents; one with 100 pages of content, and another with 10 pages, a setting of 30% would require 30 pages to match the document with 100 pages, and just 3 pages to match the document of 10 pages. The algorithm involved in DLP is sophisticated and involves text normalization, common word removal, and signature generation. These figures offer a guideline only. Number of consecutive signatures (advanced): Set the number of sequential signatures which will cause a trigger. For example, if you register two documents; one with 100 pages of content, and another with 10 pages, use this feature to detect a small section of the original content, irrespective of its original size. The algorithm involved in DLP is sophisticated and involves text normalization, common word removal, and signature generation. An approximate guide is that 1 signature represents 8 words of text after common words have been removed. Create new rule Create document exclusion If a Data Loss Prevention action results in an alert This list is empty until you set up categories for registered documents. Click to create a new data loss prevention rule based on the categories that you set in Registered Documents. This list is empty until you register documents. Click to specify registered documents to exclude from this policy. When selected, issues the default alert upon detection. When deselected, allows you to click the link, then change the text of the alert. Task - Block a sensitive financial document from being sent out of your organization This example assumes that you have already created a Finance category. 1 Go to Email | Email Policies | Scanning Policy, and select the Data Loss Prevention policy. 2 On the Default Data Loss Prevention Settings dialog box, click Yes to enable the policy. 3 Click Create new rule, select the Finance category, and click OK to have the category appear in the Rules list. 4 Select the action associated with the category, change the primary action to Deny connection (Block), and click OK. 5 Click OK again, and apply the changes. Task - Block a small section of the financial document from being sent out of your organization 1 Go to Email | Email Policies | Scanning Policy, and select the Data Loss Prevention policy. 2 On the Default Data Loss Prevention Settings dialog box, click Yes to enable the policy. 3 Enable the consecutive signatures setting, and type the number of consecutive signatures against which the DLP policy will trigger a detection. The level is set to 10 by default. 128 McAfee Email and Web Security Appliances 5.6.0 Product Guide