In The Spotlight
The astute reader will have noted that secure data sharing is actually part of an organization’s approach to data loss prevention (DLP). Read Part 1 here.
by Graham Williamson
Editor’s note: This chapter is excerpted from chapter 9 of Identity Management: A Business Perspective.
Data Loss Prevention
Unfortunately, the term DLP has been hijacked by networking types and typically refers to network edge devices that monitor data leaving an organization’s network and stop any file or document that contains data deemed to be sensitive. Content filtering is an increasingly popular technology whereby real-time monitoring of data leaving the network seeks to identify potential exfiltration of protected information. API gateways seek to manage the network edge by controlling the communication to controlled files. This means that users will be required to authenticate via the gateway before gaining access to protected information. Figure 9.2 shows the technologies that comprise DLP.