| | Data Loss Prevention Technologies of privileged information loss prevention from an information system outside | are provided In tabs data on the DLP systems which are used in Russia and also unique information on the companies integrators and their DLP projects below. We invite the companies to register the systems and projects in TAdviser.  | ||
|
Data Loss Prevention is technologies of privileged information loss prevention from an information system outside and also engineering devices (program or hardware-software) for such prevention of leaks. Competitive advantage of the majority of systems is the analysis module. Producers so stick out this module that often call on it the products, for example "the DLP solution based on tags". Therefore the user selects solutions often not on performance, scalability or criteria, other, traditional for business market of information security, namely on the basis of the used analysis type of documents. It is obvious that as each method has the merits and demerits, use only of one method of the analysis of documents puts the solution into technology dependence on it. Most of producers use several methods though one of them usually is "flagman". Many clients and decision makers sometimes understand as DLP that DLP is not – we will tell, the system of protection and blocking of ports. There is a steady opinion that DLP is only software that too is quite misleading. DLP is the whole complex of organizational and technical measures. Not accidentally the most far-sighted producers DLP aim to be beyond the systems of protection against leaks to adjacent areas, to increase functionality. The DLP project – case difficult, is a lot of consulting, joint work with the customer, and absolutely slightly actually implementations, adaptations of a system under infrastructure of the specific company. A DLP system controls the maximum quantity of communication links, analyzes files in a system, prevents date leaks in storage time, uses and information transfers, ciphers data, doing them unreadable on external carriers, guarantees secure remote access according to internal regulations. Gradually there was a concept of three stages of customer interaction in the DLP project: pre-DLP, DLP and post-DLP. At the first stage a command of vendor, integrator and customer jointly deal with subjects to protection, find out what confidential information it will be traced in the company. It is in many respects consulting work. At the market there are automatic tools for the help of the company in information categorization. It allows to categorize information in a semi-automatic mode. Further, in the analysis of the outbound traffic, a system defines to what category or categories the outgoing document belongs, compares it with already available samples (the vectors of documents constructed in multidimensional space are compared. Measurements of this space are terms). If the vector of the document is close to a vector of the reference confidential document, a system reports about it or blocks sending (depending on settings). It is difficult hybrid linguistics in operation. At the stage pre-DLP it is important to prepare such classification that a system in the course of work had neither doubts, nor false operations. Implementation is a simple part, usually it takes from one to several days. In fact it just deployment of software on all company. If there difficult, big branched infrastructure, it is longer. The stage of post-DLP assumes work with a system when an incident already occurred. At observance in the company of a number of procedures these systems can be used as the proof in court (in case of prosecution of the violator for non-compliance with the mode of a trade secret, for example). In Russia several manufacturing companies of DLP systems work (the main - InfoWatch, Jet Infosystems, Zecurion, SearchInform). On June 1, 2014 the new standard of information security support in banks recommended to them by the Bank of Russia took effect. According to the standard, the Bank of Russia recommends to the Russian banks to implement the Data Loss Prevention (DLP) systems to prevent date leak about clients. With their help credit institutions will be able to analyze correspondence of employees and also to find out what websites they use. The new standard which became effective on June 1 replaced old, acting since 2010. In the document it is for the first time told about "date leak" and measures for its prevention are registered. For this purpose the Central Bank of Russia permitted banks to use DLP (Data Loss Prevention is a system for prevention of leaks). This type of the software is established on computers of employees and corporate servers and allows to monitor all their actions on the Internet and also correspondence and information exchange. Application of DLP obliges banks to archive e-mail that in case of information leak it was possible to trace its source. Besides, the standard of security means application of the protected network protocols. According to the text of the document introduced to the Duma, the companies are going to be allocated with an opportunity to receive the remote consent of the citizen to processing of his personal data. Now it is possible to make it only at personal presence of the person. 
| ||||