GentleSecurity

Loss of customer account details, exposure of confidential information, stealing of sensitive data are typical data leak cases that cost companies up to 5% of revenue every year. Insiders, employees and contractors who have authorized access to confidential data, are liable for 70% of total data leaks.

LeakWall effectively prevents data leaks caused by

• Malicious insiders,
• Inadvertent insiders,
• Devices theft,
• Data exposure,
• Intruders (hackers),
• Malware.

The leaks are prevented by comprehensive control of end-point data channels including devices, printing, web, e-mail, messengers and other network applications.

Do you Know what is the risk of data leaks for you?
LeakWall answers this question providing Data Leak Risk Assessment Report containing

• Detailed list of detected data leaks
• Risk probability - Number of leaks to number of all operations
• Data leak by channels
• Types of leaked data and documents
• Applications used to leak data

LeakWall controls access to card holders data in complience with PCI DSS requirements:

• Protect Cardholder Data
  Requirement 3: Protect stored cardholder data
• Implement Strong Access Control Measures
  Requirement 7: Restrict access to cardholder data by business need to know
• Regularly Monitor and Test Networks
  Requirement 10: Track and monitor all access to network resources and cardholder data

LeakWall performs access control and monitoring required by ISO/IEC 27002, Security Technique

10. Communications and operations management

• 10.7 Media Handling
• 10. 8 Exchange of Information
• 10.9 Electronic Commerce Services
• 10.10 Monitoring

11. Access Control

• 11.6 Application and information access control

LeakWall effectively implements IT security measures to protect personal data in accordance with national Data Protection Acts in E.U. countries based on European directives on personal data protection. LeakWall

• Prevents unauthorized access and copies of personal data
• Monitors personal data access and transmission

Learn more on LeakWall with Luxembourgish Data Protection Act »

LeakWall lets implement Pretexting Protection in accordance with Gramm-Leach-Bliley Act requirements. Pretexting is also referred as social engineering is addressed by LeakWall by controlling data sent by employees.

LeakWall allows implementing of comprehensive and effective IT systems controls demanded by Sarbanes-Oxley (SOX) Act. The controls typically require combination of many individual solutions that could be replaced by LeakWall policy in relations to data and data channels control.

LeakWall controls access to files and folders located locally on end-point, network share , HTTP/HTTPS and FTP. The access is controlled on per user, application and content basis.

An example of possible policy: auditing or restring access to files located on network shares and containing credit card, account or social security numbers.

Control access to devices, such as USB drives, CD/DVD, portables, printers, ports and etc. You may audit and restrict access to:

• devices classes,
• device models,
• specific devices identified by vendor serial number.

The access is controlled on per user, application and content basis. It means you may enable, block and audit specific devices for selected users, applications and content transferred.

Control of outgoing e-mails via variety of e-mail protocols such as Microsoft Exchange, IBM Lotus, SMTP, TLS, STARTTLS.

The access is controlled on per user, destination e-mail, application and content basis. It means you may filter out specific e-mail destination and usage of e-mail for selected users, applications and content transferred.

Control of web access through HTTP, HTTPS and FTP protocols. With the control you may restrict and monitor usage of specific web sites on per user, application and content basis, e.g.:

• blocking access to web sites with offensive content;
• blocking access to social network web sites for certain users and in relation to certain content transferred;
• monitoring web usage for specific users.

LeakWall controls what content and data channels applications may access. The access is controlled on per user, data channel and content basis.

With the application control you may configure a LeakWall policy that effectively protect from exploits, malware and keyloggers.

LeakWall audit trails provide comprehensive metrics to audit effectiveness of organization security policy and measures, such as perimeter protection, access control and etc.

Additionally, with LeakWall audit features you effectively monitor data flows and receive reports on:

• How the documents circulate within organization
• Who read, copy and modify them
• What are documents locations

 

LeakWall policy might be configured to display pop-up dialog boxes which request user to enter a confirmation, reason of operation. For example, when user copy confidential file to a memory stick such confirmation dialog appears. The dialog indicates that user copy company's confidential content and asks her to enter a reason.

The confirmations help automatically warn and educate users on possible policy violations. The education plays important role into improving company's overall security.