1. DLP: ? DLPExpert 07-2013

2. C 2007 2008 DLP InfoWatch, McAfee, Websense, Symantec. 4,5 (, IBS Platformix). 2013 InfoWatch / ( 80 20, http://80na20.blogspot.ru ) ? 3. , InfoWatch, . , : : ILDP -> DLP -> IPC DLP: , DLP- , DLP , : 1-1.5 , 1 , 4. ? 20 2013 DLP-Russia 2013 (., Digital October) ! 5. ILDP -> DLP -> IPC 6. ADL: Anti Data Leakage - The 451 Group ALS: Anti-Leakage Software - Ernst&Young CMF: Content Monitoring and Filtering - Gartner DLP: Data Leakage Prevention, Data Loss Prevention, Data Leak Prevention, Data Leakage Protection - IDC EPS: Extrusion Prevention System ILDP: Information Leak Detection and Prevention - IDC ILP: Information Leak Prevention, Information Leak Protection - Forrester IPC: Information Protection and Control - IDC ITISS: Internal Threats Information Security Software ITD: Internal Threats Determination ITP: Insider Threat Prevention DLP 2005 , 2008-2009. IPC 2007 . IDLP/DLP/IPC 7. , : DLP , DLP : Data-in-Motion ( , , , web, .) Data-at-Rest ( , , , ) Data-in-Use DLP? 8. (, ., , .) , ( ) , , . : , , , , , . Forrester Research DLP 9. DLP Host-based DLP / Endpoint Discovery DLP Network- based DLP Network-based DLP. Network-based DLP solutions are typically installed at the corporate gateway. These solutions scan network traffic such as email, instant messaging, FTP, Web-based tools (HTTP or HTTPS), and peer-to-peer application for leaks of sensitive information. Discovery DLP. Discovery DLP solutions are designed to discover sensitive information on desktops, laptops, file servers, databases, document and records management, email repositories, and Web content and applications. Host-based DLP. Host-based DLP solutions are typically installed on desktops, laptops, mobile devices, USB drives, file/storage servers, and other types of data repositories. Host-based DLP also includes solutions that provide data discovery and classification capabilities. IDC 10. IPC (Information Protection and Control) defined as monitoring, encrypting, filtering, and blocking sensitive information contained in data at rest, data in motion, and data in use IDC : IPC? Gartner Forrester IPC Asset management Desktop computing support Device control, such as USB and Bluetooth storage devices Encryption as part of a data-leakage solution to lost data on stolen laptops Identity management Integrated audits Management tools with which to instantly see and understand everything occurring within the security perimeters Security Incident/Event Management that provides correlation for all the incidents at the endpoints, so threats can be detected early and dealt with quickly Patch control Policy implementation and oversight , ( , , , ..) , - , ; , , , . 11. Endpoint Encryption DLP 12. DLP 13. 1 . . / DLP 14. 2 . DLP 15. 3 . DLP + DLP DLP 16. DLP 4 . 17. : (endpoint) Web (discovery) 18. 5 . DLP DLP 19. , DLP-: 1. / 2. 3. DLP + 4. 5. 20. , DLP 21. , . DLP? 22. DLP ? 23. !!! 1. : 1.1. "" !!! 1.2. !!! 1.3. , , !! 1.4. ( ) !!! 2. : 2.1. !! 2.2. !! 3. (ompliance) : , 3.1. () !!! 3.2. (compliance) ! 4. : - 4.1. !! 4.2. ! 24. DLP 1/3 DLP 4 3 2 1 1. .2 (, , ), (, , ) DLP Endpoint + + + + 2. .5 , , DLP Endpoint + + + + 3. .14 DLP Endpoint + + + + 4. .15 DLP Endpoint DLP Discovery + + + + 5. .1 () , , , DLP Endpoint 6. .2 () , , , , DLP Endpoint + + 7. .3 () () DLP Endpoint + 8 . .4 , , , , DLP Endpoint 9. .1 DLP Endpoint + + 25. DLP 2/3 DLP 4 3 2 1 10 . .2 DLP Endpoint + + 11. .4 , , () DLP Endpoint 12. .5 () DLP Endpoint 13. .6 () DLP Endpoint 14. .7 DLP Endpoint 15 . .8 () , , () DLP Endpoint + + + 16. .1 , , DLP Endpoint DLP Network DLP Discovery + + + + 17. .2 , DLP Endpoint DLP Network DLP Discovery + + + + 18. .3 , DLP Endpoint DLP Network DLP Discovery + + + + 26. DLP 4 3 2 1 19. .5 (, ) DLP Endpoint DLP Network DLP Discovery + + 20. .5 , (, , () , , ), DLP Network 21. .8 () DLP Network 22. .5 , , , DLP Endpoint 23. .20 , DLP Endpoint + + + 24. .2 , DLP Endpoint DLP Network DLP Discovery + + 25. .3 , , DLP Endpoint DLP Network DLP Discovery + + DLP 3/3 27. ? ! DLP-Russia 2013 (20 2013, . Digital October) 28. http://www.infowatch.ru @InfoWatchNews http://dlp-expert.ru @DLP_Expert http://80na20.blogspot.ru @3dwave