fermer
fermer
Le réseau de demain
Le réseau de demain
Planifiez votre chemin vers un réseau plus rapide, plus sûr et plus résilient, conçu pour les applications et les utilisateurs que vous prenez en charge.
          Essayez Netskope
          Get Hands-on With the Netskope Platform
          Here's your chance to experience the Netskope One single-cloud platform first-hand. Sign up for self-paced, hands-on labs, join us for monthly live product demos, take a free test drive of Netskope Private Access, or join us for a live, instructor-led workshops.
            Un leader sur SSE. Désormais leader en matière de SASE à fournisseur unique.
            Un leader sur SSE. Désormais leader en matière de SASE à fournisseur unique.
            Netskope fait ses débuts en tant que leader dans le Magic Quadrant™ de Gartner® pour le SASE à fournisseur unique.
              Sécuriser l’IA générative pour les nuls
              Sécuriser l’IA générative pour les nuls
              Learn how your organization can balance the innovative potential of generative AI with robust data security practices.
                Modern data loss prevention (DLP) for Dummies eBook
                La prévention moderne des pertes de données (DLP) pour les Nuls
                Get tips and tricks for transitioning to a cloud-delivered DLP.
                  Réseau SD-WAN moderne avec SASE pour les nuls
                  Modern SD-WAN for SASE Dummies
                  Cessez de rattraper votre retard en matière d'architecture de réseau
                    Identification des risques
                    Advanced Analytics transforms the way security operations teams apply data-driven insights to implement better policies. With Advanced Analytics, you can identify trends, zero in on areas of concern and use the data to take action.
                        Les 6 cas d'utilisation les plus convaincants pour le remplacement complet des anciens VPN
                        Les 6 cas d'utilisation les plus convaincants pour le remplacement complet des anciens VPN
                        Netskope One Private Access is the only solution that allows you to retire your VPN for good.
                          Colgate-Palmolive protège sa "propriété intellectuelle" "grâce à une protection des données intelligente et adaptable
                          Colgate-Palmolive protège sa "propriété intellectuelle" "grâce à une protection des données intelligente et adaptable
                            Netskope GovCloud
                            Netskope obtient l'autorisation FedRAMP High Authorization
                            Choisissez Netskope GovCloud pour accélérer la transformation de votre agence.
                              Let's Do Great Things Together
                              La stratégie de commercialisation de Netskope privilégie ses partenaires, ce qui leur permet de maximiser leur croissance et leur rentabilité, tout en transformant la sécurité des entreprises.
                                Solutions Netskope
                                Netskope Cloud Exchange
                                Netskope Cloud Exchange (CE) provides customers with powerful integration tools to leverage investments across their security posture.
                                  Support technique de Netskope
                                  Support technique de Netskope
                                  Nos ingénieurs d'assistance qualifiés sont répartis dans le monde entier et possèdent des expériences diverses dans les domaines de la sécurité du cloud, des réseaux, de la virtualisation, de la diffusion de contenu et du développement de logiciels, afin de garantir une assistance technique rapide et de qualité
                                    Vidéo Netskope
                                    Formation Netskope
                                    Grâce à Netskope, devenez un expert de la sécurité du cloud. Nous sommes là pour vous aider à achever votre transformation digitale en toute sécurité, pour que vous puissiez profiter pleinement de vos applications cloud, Web et privées.

                                      Cloud DLP reference architecture: Six tenets for accurate and efficient cloud data loss prevention

                                      Sep 14 2015
                                      Tags
                                      Data Loss Prevention Software

                                      Sometimes we guide our customers to make good choices, but more often they guide us. I am very pleased to share with you an example of the latter: Our Cloud DLP Reference Architecture.

                                      This Architecture for securing sensitive data in the cloud is the brainchild of a few of our most cloud-forward customers. We adopted it, introduced it to our partners – from identity management to data classification to cloud storage and collaboration to on-premises DLP solutions – and now propose it to all of our customers whose requirements call for accurate data loss prevention in the cloud and efficient integration with and preservation of, on-premises DLP and incident management workflows.

                                      Our customers articulated three macro-level observations:

                                      • Their data are moving to the cloud
                                      • Data are being accessed from everywhere, including remote and mobile
                                      • They need to marry their on-premises DLP and incident response systems with cloud-based ones

                                      They also said that they didn’t want to backhaul all cloud traffic to their on-premises DLP and incident response systems, yet still needed to get as much value out of those systems as possible.

                                      So we set forth in developing an architecture that allows for this. It has six key steps, which are fleshed out in this white paper, but are summarized here:

                                      1. Derive context from cloud service transactions and set policy based on it before moving to the next stage of data identification
                                      2. Use a classification framework to identify or categorize sensitive content
                                      3. Apply data classification to discover sensitive content in the cloud
                                      4. Quarantine and redirect potentially sensitive content to an on-premises DLP solution
                                      5. Enforce policies and initiate incident response
                                      6. Ensure user accountability

                                      Netskope’s solution stands out for its cloud DLP, a capability we call “noise-cancelling cloud DLP,” and the reason more than three-quarters of our customers have deployed it. Our cloud DLP boasts some 3,000 data identifiers, 500+ file types, custom RegEx, proximity analysis, fingerprinting, Exact Match, international support, and more. But what really makes it special is that this architecture is at the epicenter of the “noise-cancelling” claim. The ability to reduce surface area, detect and classify content in the cloud, backhaul not everything but the vastly reduced subset of potential violations for further analysis, and initiate existing, proven workflows based on verification is critical to our customers.

                                      If you’re solving the hard challenge of protecting sensitive data in the cloud, I urge you to reach out. My colleagues and I will gladly walk you through the details of this architecture and help you think through how it can be applied in your enterprise.

                                      Do you have feedback or suggestions for how to make this framework even better? I want to hear from you!

                                      author image
                                      Krishna Narayanaswamy
                                      A highly regarded and awarded researcher in security, behavioral anomaly detection, and deep packet inspection, Krishna Narayanaswamy brings two decades of technical and thought leadership as founder and chief technology officer at Netskope.
                                      A highly regarded and awarded researcher in security, behavioral anomaly detection, and deep packet inspection, Krishna Narayanaswamy brings two decades of technical and thought leadership as founder and chief technology officer at Netskope.

                                      Restez informé !

                                      Abonnez-vous pour recevoir les dernières nouvelles du blog de Netskope