The recent Verizon 2013 Data Breach Investigation Report showed that about 71% of the data breaches targeted user devices. This is not a surprise since endpoints are usually the most vulnerable egress points. Consumerization of enterprise has changed the way we work and made endpoint data loss prevention more challenging than ever. In addition to the variety of devices, many companies leverage virtualized platforms such as VDIs and Terminal Servers. Protection for these virtualized environments are just as important as protection for physical devices.
McAfee recently released DLP Endpoint 9.3 which includes enhanced virtualization support for VMware View, Citrix XenDesktop, Citrix XenApp amd Microsoft Terminal Servers.
What I’m particularly excited about is the per-user policy that is available for Citrix XenApp. When you have multiple sessions sharing a virtual desktop, having the per-user policy allows for flexibility and better control of the data flowing to individual sessions. For example, user A has a DLP policy that allows him to print from the virtual desktop; and user B who shares the same virtual desktop is not allowed to.
There are some other exciting new features that can help you better protect sensitive data at the endpoint.
- Clipboard protection for both “Copy From” and “Paste To”; and the new Screen Capture Protection Tool ((e.g. SnagIt))helps organizations effectively protect product designs and source codes against intentional and unintentional data loss.
- A brand new DLP end-user console increases employee awareness on data protection, empowers them to self-remediate any compliance violations such as PCI, and reduces manual involvement of the DLP administrators.