Go to the table of contents Go to the previous page Go to the next page View or print as PDF
New in Forcepoint DLP
Release Notes | Forcepoint DLP | 29-November-2017
Version 8.5.0 offers several new features and product updates.
New Forcepoint DLP Cloud Applications powered by Forcepoint CASB
Forcepoint DLP Cloud Applications service leverages the Forcepoint CASB platform to provide complete visibility and control over sensitive data uploaded or downloaded from enterprise cloud applications, and prevents sharing of sensitive data to unauthorized users or devices. Benefits include:
*
*
*
*
*
*
*
The legacy DLP cloud agent (supported in DLP 8.3 and 8.4) has been replaced with the Forcepoint CASB service to enforce DLP policies in sanctioned cloud applications. Existing AP-DATA Cloud App Security customers will be automatically provided with a Forcepoint DLP Cloud Applications license for the duration of their remaining subscription.
Enable, configure, and manage the DLP Cloud Applications (CASB) service on the Settings > General > Services page in the Forcepoint Security Manager.
Once the DLP Cloud Applications (CASB) service is enabled and configured to work with one or more cloud applications (like OneDrive for Business or Box):
*
*
Support for classification tagging systems
Forcepoint DLP now includes support for the classification tagging system offered by Boldon James. With Boldon James, organizations can add metadata to files to help classify their data.
Enable classification tagging on the Settings > General > Services page in the Security Manager.
Also set the guidelines that determine when Forcepoint DLP adds tags to files, or updates existing tags. The guidelines refer to comparing the labels of the file before the labels are changed by tagging. During tagging, the file is compared as a whole, not per selector field. If one classification fails, neither selector is added to the file.
Once tagging is enabled and configured, create or update action plans to define up to two tags that Forcepoint Data Discovery can add to files found during the discovery process.
 
Note 
New and enhanced policies, rules, and classifiers
Policies, rules and classifiers were added in this release for the protection of Personally Identifiable Information (PII) and Intellectual Property (IP)
New (PII)
*
Added "CV and Resume" policies and related policy category, classifiers, and regions:
*
*
*
*
*
*
Added IRS forms-related rules and classifiers, and renamed existing classifiers –
*
*
*
*
Added and renamed US state regulation policies -
*
*
*
*
Added policies "Biometric Files" and "Biometric Files for Discovery" and file type classifiers "NIEM-Conformant XML", and "OASIS XML Common Biometric Format (XCBF)".
*
Added policy "Problem Gambling" and pattern classifier "Problem Gambling" that detect expressions that are indicative of problem gambling.
*
Added names-related dictionary classifiers "Malaysian Name" and "Philippine First or Last Name".
New (IP)
*
Added wide, default and narrow "Email Address and Password" rules to the policy "Password Dissemination".
*
Added detection of "Encrypted RAR5 File" and "Encrypted B1 File" -
*
*
*
Added file type classifiers "Raster Graphics Formats" and "Vector Graphics Formats".
*
Added policies "Security Software Files" and "Security Software Files for Discovery" and related file type classifier "Splunk Enterprise Security Event Log File".
Enhanced
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
"Name and Password" rules were improved and renamed to "Name and Password (Default)", and wide and narrow "Name and Password" rules were added to the following policies:
*
"Connecticut Data Breach Notification Act"
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
"Suspected passwords" rules were improved and renamed to "Password Dissemination for non-HTTP/S Traffic (Default)", and wide and narrow "Password Dissemination for non-HTTP/S Traffic" rules were added to the policies:
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
*
Improved "SSN with possible password" rules and renamed them to "SSN and Password (Default)", and added wide and narrow "SSN and Password" rules to the following policies "Michigan Identity Theft Protection Act", and "Wisconsin Data Breach Notification".
*
Improved "Passwords"/"Password Information" rules and renamed them to "Password (Default)", and added wide and narrow "Password" rules to the following policies "General Sensitive Information for Discovery", and "Suspected Malicious Dissemination for Discovery".
*
Replaced the pattern classifier "Explicit Password" with a script classifier by the same name.
*
*
*
*
*
*
Improved the accuracy of credit card number-related script classifiers.
*
*
*
Improved the accuracy of Australian Tax File Number (TFN) detection –
*
*
*
*
*
*
*
*
*
*
*
Removed
*
*
*
*
*
*
New in Forcepoint DLP Endpoint
For information on the latest Forcepoint DLP Endpoint features, see the Forcepoint Endpoint Release Notes on the Forcepoint Documentation site.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Copyright 2017 Forcepoint. All rights reserved.