Documentation | Support

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
2015 Release 5 Notes for Websense Cloud Web Protection Solutions : What's new in 2015 Release 5?
What's new in 2015 Release 5?
Websense Cloud Web Protection Solutions | 12-Nov-2015
Data Security (DLP)
Data security features provide visibility into the loss of sensitive data via the Web. When SSL decryption is enabled, this includes data transfered via both HTTP and HTTPS transactions. Monitor the types of data loss most useful to your organization, and use data security reporting to help you assess your risk exposure.
 
* 
Important 
Data security features are not compatible with the i500 appliance.
When data security features are enabled, you can monitor:
*
Data that is protected by national legislation or industry regulations, specifically:
*
Personally Identifiable Information (PII)
*
Protected Health Information (PHI)
*
Payment Card Industry (PCI DSS)
*
Information related to data theft by malware or malicious activities
*
Loss of intellectual property via custom classifiers that you define
To enable data loss detection:
1.
Navigate to the Web > Policies page and open an existing policy.
2.
Select the Data Security tab.
3.
Mark Enable data security (monitor only).
4.
Under Regulation and Data Theft, select the types of information to monitor.
5.
Under Custom, enable any custom classifiers appropriate for this policy.
Custom classifiers use custom phrases, dictionaries, or regular expressions containing business-specific terms or data to classify your data. They are defined on the Web > Policy Management > Content Classifiers page.
6.
(Optional) Under Trusted Domains, first mark Enable trusted domains, then identify any domains to which data may be sent without data security analysis. No incidents will be created for sensitive data sent to these domains.
Additional steps are required to enable reporting on data loss incidents:
*
The Account > Settings > Privacy Protection page now includes a Data Security Incident Settings section. Select Store and display incident data to capture the values that triggered data security incidents, store them in the incident database, and include them in reports.
*
You can control which administrators can view data security reports (and potentially sensitive information) and the data security dashboard. This setting is assigned at the account level, under Account > Settings > Contacts.
For administrators with the appropriate permissions, there are a number of reporting features that can be used to monitor data loss and data theft activity.
*
In the Report Catalog, select Standard Reports > Data Security to build reports about data loss and regulatory compliance over the web channel.
*
For a high-level view of activity in your organization, click Dashboard, and then click the Data Security tab. Charts include:
*
Incident Count Timeline shows a daily incident count for the designated period. With it, you can quickly identify trends and make policy changes as required.
*
Total Incidents by Content Type shows the number of regulatory incidents, data theft incidents, and custom classifier incidents in the designated period.
*
Top Sources shows the users, machines, or IP addresses most frequently instigating data security violations as well as the severity of their incidents.
*
Top Destination Domains shows the Internet domains most frequently targeted with sensitive data.
*
Top Web Categories shows the website categories most frequently targeted with sensitive data. These can be custom categories or the categories classified by the Websense URL category database.
For more information about using data security features, see the Getting Started Guide and the Help.
Office 365 bypass
 
* 
Note 
This is a limited-availability feature that may not be available in your account.
To ensure that Microsoft Office 365 applications function properly, the cloud service now offers the option to bypass authentication or bypass the proxy entirely for Office 365. Enable the feature on the Web > Bypass Settings page. Select the Authentication Bypass or Proxy Bypass tab, then mark the Office 365 box.
Reporting updates
The following updates have been made to Web reporting in this release:
*
The Connection Name attribute has been added to the Report Builder and Transaction Viewer, enabling you to report on traffic based on entire connections rather than only IP addresses.
*
A new standard report, Top Connection Names, has been added to the Web Activity folder in the Report Catalog. This report provides the top 20 connections with the most web activity in the last 7 days.
Administrator password expiration limit warning
A warning that a password expiration limit of 90 days or fewer is recommended now appears in the following cases:
*
When you go to Account > Contacts, and click Edit under Account Management
*
When you edit a contact's login details, and select a value greater than 90 days from the Expire password drop-down list.
This recommendation is for both security best practice and PCI compliance purposes.
Links to data security and privacy information
A new Privacy & Security option has been added to the Help menu in the Cloud TRITON Manager. The documents accessible from this menu item include:
*
a Data Privacy FAQ
*
the Websense Privacy Policy
*
an Information Security statement for Websense cloud services
*
information about ISO27001 certification
TRITON AP-ENDPOINT Web installation page updates
The installation pages that appear to end users when installing TRITON AP-ENDPOINT Web directly from the cloud service have been updated to be consistent in style with other Websense notification pages.
New block page for endpoint end users
A new block page is displayed to end users when the request is known to come from a system with TRITON AP-ENDPOINT Web installed, but the user cannot be determined and authenticated.
This page cannot be edited by administrators.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
2015 Release 5 Notes for Websense Cloud Web Protection Solutions : What's new in 2015 Release 5?
Copyright 2018 Forcepoint. All rights reserved.