Does IronPort have anyway to protect against sensitive data leaving my environment via screen shots? We have a problem where we work with a 3rd party vendor and often times they will ask for a screen shot of an application window when an error occurs. The problem with this is often times there is sensitive information included in with the screen shot, credit card numbers, social security numbers, etc.
in addition to Rehan, there is a feature called image analysis (IA) for the IronPort, this is an aditional scanner used by customers who have policies about inappropriate content leaving their network. So no kind of text recognition and the like that would be able to detect credit card numbers from screenshots.
CIsco IronPort DLP feature currently does not support scanning of sensitive data inside images. As a workaround, you can always detect Media files and bouce/strip/CC to prevent leakage of sensative infromation.
You can always open a Support ticket to file this as feature enhancement.
Thanks for the input guys. We do have a lot of legitimate e-mails leaving our organization with screen shots in them but we also have a problem with sensitive data leaving via screen shots so may be something that you want to add to the list. Thanks again for the input.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...