I want to block sending receiving my sensitive data (account numbers credit card numbers etc..)through IM chat. Please share the KB link how can i configure policy for this purpose.
Can anyone offer assistance here?
Can you elaborate on your channels of communications for IM data? What methods are you anticipating using to detect the data? What sources? How is the data being ingested? Or readily available? Are you referring to Client Captured communications, Network Boundary Agent Detection, protocol detection, inbound, outbound, outbound but filtering by groups?
We need more detail as to what you are thinking of accomplishing.
Thanks for reply Beeks.
I am new student of CA DLP.. and know I want to test a simple use case how can I block Sensitive chat ? in skype,msn etc.. and sensitive means (user can't share account numbers, credit card number salary etc...) through chatting...
Well using the Client Endpoint Agent you can block the use of Skype application totally or not at all using Application Monitor triggers, but due to the nature of how the Skype protocol operates, you will not be able to capture traffic selectively, unfortunately. CA DataMinder has not been keeping up with the latest IM protocols. You may be better off using the Client Endpoint Agent and trying to capture web based chats like on Facebook Messenger or Gchat, but I believe both are now actively checking for SSL certificate mismatches so your mileage may vary depending on your testing environment.
If I had more time I'd run through a series of tests, but I have some really bad DataMinder reports that were released in production that I need to re-write for another team.
But I want only my data protection, also I aware about web based post and I can block sensitive information posting in fb/twitter. But requirements are little bit different. as above. client requirement is that every may can install skype, msn, or yahoo msngr and talk to each other, But user can't share sensitive information through IM chat supported by CA dlp.. #Beeks
I think the industry is more shifting to Lync/OCS, which can be tapped at the server level and passed through DLP for compliance, but not involving real-time blocking. One example of what you are trying to do, for example in the regulatory compliance realm, is if you are a banker, why would we allow you to install Skype to chat with buddies at another bank, who also does not allow Skype to be installed? It would be a regulatory compliance breach. To test the blocking of Yahoo/MSN, etc (not Skype, its encrypted) you'll need a Network Boundary Agent (NBA) installed in-line before your network gateway. You'll need a Napatech NT4E-4T-INL inline network adapter to parse the traffic and send to a series of policy engine hubs. Each card costs about $3,000 to $4,000. They're fun to play with, but good luck.
Andy, it's really late for me, please confirm
I believe your assessment is correct.
More information on the DataMinder Network Agent can be found on the DataMinder Bookshelf (click the link below)
CA DataMinder 14.6
Senior Support Engineer
Nice talking... I am not banker, but I am researcher that's why I think about every possible loophole same as skype installed in banker system
Retrieving data ...