As a business owner or network administrator, understanding data loss prevention is important. There are essentially three types of DLP systems.
1. Network DLP Systems
Network DLPs are also referred to as gateway-based systems. Usually dedicated hardware/software platforms, they are most often installed on the organization’s internet network connection. They analyze network traffic to search for unauthorized information transmissions. These transmission methods including email, IM, FTP, HTTP, and HTTPS . Network DLPs are popular because they are relatively easy to install and provide a low ownership cost. Another benefit of Network DLP systems is that they can also discover data at rest to identify areas of risk. This is ideal because they can access areas where confidential data is being stored in inappropriate or unsecured locations.
2. Host-based DLP Systems
These systems run on end-user workstations or servers in the organization. Similar to network-based systems, host-based can address internal as well as external communications. Because of this, they can be used to control information flow between groups or types of users. Host-based DLPS’s also check email and instant messenger communications before they are stored in the corporate archive.
Unlike the former, host systems have a unique advantage. They can monitor and control access to mobile devices and other physical devices with data storage capabilities. At times, they can access information prior to it being encrypted. Some host based DLP systems also have controls to block attempted transmissions of private, confidential information. This type of DLP system does have a disadvantage.They must be installed on every workstation in the network.
3. Data Identification
DLP solutions usually include multiple techniques for identifying sensitive information. Data identification is a process. Organizations use a DLP technology to determine what to look for. DLP solutions use a number of methods for deep content analysis. The strength of the analysis engine directly correlates to its accuracy. The accuracy of data identification in a DLP system is important to reducing false positives so testing for accuracy is recommended to ensure a solution has virtually zero false positives/negatives. Many high end routers like the Cisco 7603-DC-BUN offer top notch security features.