Enterprise Security Challenge
Companies are struggling to identify and protect sensitive information. Confidential customer data, intellectual properties, trade secrets and legal documents are being shared against authorization, costing organizations millions in restitution. Because this sensitive information is so easily accessible, in today's open environments, the need for data security has amplified. Data, in all forms, is at risk: Data at rest - sitting on the network or shared drives, data in motion - data being sent via email, Instant Message, web postings, etc. and data in use - data saved on removable media devices, such as: USB drives, CD's, floppy disks, iPod's , cameras, etc.
Recently, the severity of data protection and insider threats has significantly increased. Information that is being stored on the network and various removable media devices is getting into the hands of outsiders, thus, violating state and federal enforced laws and regulations designed to protect such data: Sarbanes Oxley, GLBA, HIPAA , CA SB1386, CA AB1950, Payment Card Industry (PCI) Data Security Standard, The Patriot Act, FISMA, FERC/NERC, and others.
Data Loss Prevention is a system which performs real-time data classification of ALL outbound transmissions from the Network and automatically enforces security policies on security violations including blocking. The key is to protect the content, not the file. So if the same content resides in multiple files of different formats, the system must still detect it and enforce an action on the transmission.
New programs requiring the use of unconventional protocols are becoming increasingly more prevalent. Furthermore, despite company policies forbidding the practice, employees frequently utilize peer to peer applications. Microsoft Networks and similar protocols, initially designed for LAN, are perfectly capable of working over the Internet. Finally, malicious applications (e.g., viruses and worms) can be utilized to transfer data across a broad variety of protocols. So supporting just SMTP, HTTP, FTP and IM is a real limitation and is NOT DLP.
The Next Generation of Data Loss Prevention & Data Protection:
The "Reverse Content-Aware Firewall" platform
The GTB "Reverse Content-Aware Firewall" is unique from leading competitors in that it addresses threats from both trusted and un-trusted users. With a unique patent-pending fingerprinting feature, it is capable of real-time inspection of all protocols (even those that may be unknown) and optionally stopping data loss immediately; as opposed to just reporting it.
Our products provide unprecedented , real-time visibility and control of content – with no performance degradation.
GTB Technologies Data Loss Prevention (DLP) solution enables organizations to distinguish confidential data and enforce data security policies. Early DLP solutions focused on protecting data in motion by monitoring email, web, secure web and FTP, as well as proactively blocking network communications. Soon after, organizations began to deploy DLP solutions for data at rest, in order to discover and protect sensitive information on internal file shares and desktops. While previous DLP solutions have been solely network-based, the risk of data loss through mobile devices like laptops and removable media devices has stimulated a growing demand for DLP solutions at the endpoint. GTB offers a DLP solution for all data forms; data at rest, data in motion and data in use.