How janusSEAL simplifies DLP
Gaining leverage and synergy with other DLP solutions
Many organizations seek to protect their valuable information, but hesitate to invest in comprehensive Deep Content Inspection (DCI) DLP systems because of the large investment, extensive preparation, high workload imposed on the IT department and anticipated disruption.
A simpler, more effective solution is to use data classification to phase in your data protection strategy:
- Phase 1 : use janusSEAL to tag all created emails and documents with classifications your existing security systems can recognize and react to
= immediate, cost-effective protection from accidental loss – the majority. - Phase 2 : introduce Deep Content Inspection (DCI) DLP systems to block or process all email or document transfers based on recognized content
= longer term, more costly protection from deliberate data loss – the minority.
If the two phases are sequenced, janusSEAL can reduce the complexity and cost of DCI by enabling easier preparation and implementation. Here is how the two phases complement each other.
| Phase 1 - janusSEAL | Phase 2 - Deep Content Inspection |
|---|---|
| Simple: author and user-centric | Complex: IT system and information-centric |
| Classifies documents and messages based on sensitivity or value | Prioritizes and identifies information based on keywords, dictionaries, regular expressions, partial document matching and/or fingerprinting |
| Granular: classifies all data wherever created | High level: identifies data types within the network |
| Enables existing security systems to check and process every document/email | Need to introduce new technology at the perimeters to perform content inspection and then block/allow transfer |
| Simple, rules-based: email tag will determine if email is sent, blocked, quarantined or encrypted; tags on documents can be used in firewalls, proxy servers to determine if transfer is allowed, blocked | Complex configuration: automating policy assessment, classification and settings takes longer |
| Highly accurate; tagged data will be processed according to policy | Risk of false positives and negatives due to unstructured and semi-structured data |
| Low intrusion: all information generated is classified quickly in real time | High intrusion: difficult to identify data generated in real-time |
| All data, including unstructured is tagged as created - by everyone on every device | Unstructured data scattered over PCs and mobile devices cannot be easily identified |
| Rapid: sensitive data easily identified by tag | Slow: sensitive data takes more time and resources to identify |
| Adaptable: security classifications are independent of organizational change | Less adaptable: policy settings need frequent revision during organizational change |
| Rapid deployment: easy and simple, with immediate results; no lag | Slow deployment: complex, time-consuming; can take years to achieve results; long lag |
| Easy to set up, administer and maintain | High and costly ongoing maintenance |
| Distributed workload: each user classifies own documents and messages | Centralised workload: IT department and management do all the work |
| Shared responsibility: user-centric system promotes proactive security culture (users as assets) | Imposed security: IT-centric system promotes reactive security culture (users as liabilities) |
| Complementary: once documents are classified most systems can recognize them | Beneficiary: easier to set up and run once all documents are classified |
