NextLabs Enterprise DLP
October 28, 2008
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: A product with a huge number of features that could not all be listed because of space constraints.
- Weaknesses: The terminology used by NextLabs can be quite confusing at the beginning, but after a short time it becomes easy to distinguish between the components.
- Verdict: A unique offering which provides an elegant solution to data-hiding techniques, as well as protecting documents in an intra-office exchange. Reccomended.
NextLabs DLP is an interesting software-based offering. While most data leakage prevention products use a primary server to stem the tide of sensitive information from leaving the organization, NextLabs controls data leakage through the DLP client. This unique approach allows sensitive data to be blocked - not just from leaving the organization, but from internal sources to internal destinations as well.
The internal filtering helps organizations create audit records of file access. It also helps the organization stay in compliance with its own policies. There are many components to NextLabs' DLP offering and perhaps the most critical is the policy server. This creates the rules used by the client - such as how to process data. The policy server is user friendly and enlists a wizard to help create and customize rules for the endpoints.
Outside of the policy server, the next major component is the client. The client is responsible for the enforcement of the policies set by the policy server. The client is application-aware and performs most filtering before the classifi ed information has the ability to be either transformed or to leave the
system. This is done though the use of tagging files and setting which applications can use, modify or distribute those files. For example, a Word document becomes tagged, the tags are stored in the metadata of the document, and the document tag also specifi es which programs can use the document. This stops information thieves from hiding the data using encryption, steganography, or compressing or converting the document to another file format, such as a PDF.
NextLabs' tool also includes more traditional endpoint control features as well, such as blocking USB drive access or requiring encryption of sensitive fi le before copying the file to the USB device.
The pricing for the Enterprise DLP starts at $6,500 and includes Policy Studio and Reporter applications. Enforcers with Policy Assistants range from $75 to $250. This places NextLabs' DLP off ering in the low to medium level of the cost spectrum.
Sign up to our newsletters
SC Magazine Articles
- APT operation 'Double Tap' exploits serious Windows OLE bug
- 'DoubleDirect' MitM attack affects iOS, Android and OS X users
- Android malware 'NotCompatible' evolves, spawns resilient botnet
- The Internet of Things (IoT) will fail if security has no context
- Regin: nation-state possibly behind the stealthy modular spying malware
- Operators disable firewall features to increase network performance, survey finds
- DDoS attacks cost organizations $40,000 per hour, survey finds
- Waste no time patching Windows Schannel, OLE bugs, experts warn
- Study: 68 percent of healthcare breaches caused by loss or theft of devices, files
- Spin.com redirects to Rig Exploit Kit, infects users with malware, Symantec observes
- Study: 'High priority' issues hamper endpoint security solution implementation
- Researchers identify POS malware targeting ticket machines, electronic kiosks
- Pirated Joomla, WordPress, Drupal themes and plugins contain CryptoPHP backdoor
- DDoS attacks grew in size, threats became more complex, Q3 reports say
- Man gets 18 months in prison for accessing Subway POS devices, loading up gift cards