CSA 5.2 and Document Security

Unanswered Question
Jan 31st, 2008

Typical users store confidential data in any number of places. Is it possible for the CSA to identify confidential files by picking up the words 'company confidential' inside the file and then classifying them as sensitive files?

I am trying to ensure that any confidential files that are copied to removable media are at least logged but the current default method of preventing/logging copying of confidential data seems to rely on the file name or the file path.

Ideally the CSA should classify on the basis of file content such as the word confidential.

Can anyone help?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Loading.
csaadmin28 Mon, 02/04/2008 - 08:15

Where are the experts on this forum? Can no one provide an answer??

csaadmin28 Mon, 02/04/2008 - 08:36

Thanks for your reply and confirmation.

Cisco have whitepapers and videos on document security and obviously their solution is quite poor if it simply depends on file names or paths vs actual content. Educating and expecting users to always store confidential information in the same location is simply not realistic.

I'll raise a feature request and see where it goes.

wiluszm Mon, 02/04/2008 - 21:01

I've heard from sources that this will be a feature in CSA 6.0. CSA will be able to indentify confidential data within files such as SSNs, CC #s, etc... As for whether you can key off of specified words, I'll leave that for Cisco to answer.

-Mike

http://cs-mars.blogspot.com

Actions

This Discussion