Network Security & Hardware - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Data Leak Prevention, DLP Security Vendors Grow Up



 By: Brian Prince
2008-10-31
Article Rating:starstarstarstarstar / 7


There are 2 user comments on this Network Security & Hardware story.


  Table of Contents:
  1. Data Leak Prevention, DLP Security Vendors Grow Up
  2. True DLP

Rate This Article:
Poor Best
Data Leak Prevention, DLP Security Vendors Grow Up
( Page 1 of 2 )

The market for data leak prevention tools led to numerous acquisitions in 2008. As the spending spree slows and the hype around DLP dies down, more comprehensive approaches are emerging on the market, and customers' needs and expectations are evolving.

2007 was a dramatic year for the data leak and data loss prevention market. Security vendors racked up acquisition after acquisition, while corporations decided how best to deal with the fear that their intellectual property could spill out into the wrong hands.

In the past year, however, the hype surrounding DLP has died down a bit. Still, the role of technology in any enterprise data protection strategy has not diminished; instead, a more complete vision of what DLP should be has emerged.

Meridian Health, based in Neptune, N.J., was one of the early adopters of DLP products. The health care network bought into the technology in the second half of 2006, before the marketing hype began in earnest. The idea was to get ahead of the data protection requirements of HIPAA (the Health Insurance Portability and Accountability Act), as well as New Jersey's Identity Theft Prevention Act.

The experiment has worked well for Meridian, which started with technology from Tablus prior to that vendor's acquisition by EMC. Still, there were hurdles to jump.

Resource Library:

"What we did when we first got the product is what most people do, you turn on every lexicon just to see what you got, and that was a mistake," said Catherine Gorman-Klug, corporate director of privacy and data security at Meridian Health.

What happened, Gorman-Klug explained, was that the technology began generating false positives by inappropriately flagging keywords in everyday messages. Cutting down on false positives meant fine-tuning the policies and aligning them with the day-to-day needs of the staff.

DLP: The "Morning Zoo" of the security world

Meridian's story is not unique or product-specific. The challenges of properly utilizing DLP blocking capabilities intimidated some enterprises into not using that part of the technology at all. But that is changing.

Nick Selby, an analyst with The 451 Group, said he attended a workshop with security executives in Chicago in October and found many of them were using products' blocking features. This will happen more and more, Selby said, as the technology commoditizes and users become more familiar with what they want to block.

The cloud of marketing hype hovering over DLP in the early days made it difficult to come up with a solid definition of what it was. Some vendors spoke about e-mail encryption; others about content monitoring and filtering; still others about things like USB port control.

"The anti-data-leakage space in 2007 was the 'Morning Zoo' of the security world: incessant yakking, and the same nine songs over and over," quipped Selby. "Since July, 2007, there has been $1.4 billion in acquisitions, and several deaths-by-whimper. Those remaining players are either strong or dying soon."

The difficulties enterprises found in utilizing the blocking technology underscored the importance to organizations of understanding what data they have and how they use it. This in turn increased the relevance of data discovery as a part of DLP. Over the past 18 months, the focus of the market has also shifted from just the network to including endpoints.





  Reader Comments: Data Leak Prevention Market Starts to Grow Up
>>> Post your comment now!
A user comment on this article
Until DLP vendors tools can detect insider use of digital steganography there remains a huge gaping hole in the tools. Of course no body believes, or...
Posted At: 11-03-08
By: Anonymous
False Positive Rate
I'm sure the real reason why executives are slow to incorporate the "blocking" feature was due to their dlp solution's failure to accurately detect...
Posted At: 10-31-08
By: Paul
>>> Post your comment now!
 


 
 
>>> More Network Security & Hardware Articles          >>> More By Brian Prince
 


x}r㶲s\@♵MQGJɖ<4LT(S$IVrO]'7nBKL&{Ɩht7F;?{{~$rhiOH1%3TI}"I{h#(7`Z)rdxBԲ|WR #YĮtj5w{#|6%߽w *sR{€wɔiPWل^ߗ͙6Q/?1 Lbhq٤@#: rWü#~h='@IR܇cѺ8P(} c1 [tV;v T| pfL&;=a>"B%hʏ(1"|x\'{dY u(X(QC, w-mqDFM-GVekVCl"s9ȹ3oWniɿT͝ L4H %հHIp/z:r,#c9 NRY"Rk3t4ԬkScG 7G]L0Hoچs[=0q*sܼ~/ EU ns~#􏂺,;ڎ6ж켦E9{grԾx'7rHǂ |'k[oLZ.JX<%|aOm@tXB,9"yd[n9,Ղz .c=-bv=ӧ0#ƌ_8(J>gsKrоd>=?ϐ}1fPUU~ 32ؕΚgxg_:nZ77VOzפ9m>;sوlnAZ|Yk׷V\7`Kk'^3Q&ںa#jCICw:|&޺xr9%9Io/0dio,Yn_H.)żM|Y|ěy#0ri4(-ߦAf@w - :svf5H(mҔj 9B%yWϝ7hr Ce)#8?S̓IhJq䰉c,XSl؅ RMFoB@e ,}PEtBAͨ8 . If(;=^f/\R@3p1ST6,x_5 .Ó!fu՜Ӆ]We oY <Ǟ4vz~6LqJXx7Y`I-e`\\Զ7j06} 5KX8T ǿ@8ʍ??5m!S[ö@ .Sks+k< }0tZG6O=3jY}vi(| I8hhƋMriOMrӇt!L w|hx: # 00gw9LP#iAтMx>kIMlMߟ̀s#08w ɝ 5 <QnHi>X^0 jp.HpyE ]qksB>ȁ{0g`sDokwii#1).Kw2Z}c%n أ -H.B$(ZȻB!Alq [$pXdl++~#azGBJe6Os@PG҅3qJP.τRZ z)0ٜʬ$5Mu]_ ȉ#m"0%X ,gZ X5ֲ fT8VJ >Ӥ7= KҺ:M MX&)# K8Y fzn4 I߱(Y`6Ê0ӊYsξS s>xFXvG7M- hLSS R g?fx0-qڛ:!eR#Ok0k8-ucys347Nm~|CTfЬ||=厬m|(&](LuΩJJ&k:HX3j-yspm ֌O\XbʁZJ=&"ǰP3>p(^HIRЙj!@9zէl)>3-%֊eۏRu#z_No6veXZ @)Ui,a70Ԣ(P|M$"!tùfXGJ]D!1~ha2(б!{jaaC+EE.WӟLYZsXjLZ`!?r(1IO5 &^PGe d^s`M[`R9cDzl lF CQ>-L=G.4MD83G[/OAU4$qx3??4X)0*Ly. ?}uVN0\}MДa˘32|q6L,*IRP$x>5 dj>'$o':#XE~"}yjmA6\,0|"j*VD0pl@;RԒtq -߂ä?I L!2Bsݧ}=1g匬3 { dUkbS{jEQRVq~W`sϏ9L]Cx /OqCfCӨ7?g CzCpe0SMwK\i >#]\V`QaSƖ=4FXXoH]M;H̎'OBB2By^ Yh-\rRj͔ Q=87~e7ufv9Aخ crAm>qW;PVC89'&b)&GJtlɂu! 2tXݚ `1}j$a#C`JEWFljN枏+ӥ ,GϺ]j}u¾_YN+^> (L50Ȉ%=GlTlm⻏.1֞m$R*nC01^*== 7S_ -ʖvg˦ՆgQygf7s񖯦 ޒO-gn;pi-uQby.Am /Ur-|&q3旁^_+ZN% `,fqNg epvN{6us0X3f~k`pl1\An>۹+~1A^ r6_?J}[L4@V1-0]̞̙A-mۨ*X9 6^#2!9i -!OR4sp>nzʅJg HW4Čekrฦ[?iJ#ohks_R{<@̙5Y* % =Eݸ1u)&!j|l'Ge7UVEuR9,̖K%4e3/쌸-9DXQX^}?ZaqbE1 w܆cyJV~ZgZqRtt(Е䏽n:)lw9Κ# ﵲ%<4Թl9"c{/[R|ga\[TezLR(1Iw1]1~J&%ju.KElFp0Z<!` 8ΥwѻGE-% zWs=A DH͋#䄬W!yN/FSLuk;d4)(g~H/6b -wj_sfij ^Ue z AE׏7vy4eVyy~ïn-,d20!&Wktṽ}BX@ $X)XCu:_]4?GG:KE9P ` bcaLFrEl&zRG>egiəπ/QINQ):*9Q_akѷo%Aߐ>O1Ok7tEdW(hLVfsF;DzdNlp j_tESrF4/K/pQZin} zsDaP;DZ3pu*hhw<)~[ħ{, /䎱R1G|$0m2결u]$<1ON)tJȓÓ!E=)I28IUF4A2uIH?Md4XPWl Pق'59ܻ8^]߹m|d<<RpLCRàsڼ'B}$Xyϓ#:*VjRZz]UHN~DC.6OY-`09+R~]ȩrxXuofܣcy~"ѴNxL7Ď#^@(NVu2k=x/[_YN.t0o!_mzϜGoIM21-ȄK)A/gx9[Q rЧxf"64Nlywy#KxESrcWyZ7vY?{xXL3mbz7 ͋A4/?A 6̯> H-Н>u?y{lo&=)sǣAlΜh59obJof6eL07+۽4vl'*A=wCG<-L>?Gdc:M"I^QԼګUdE)I}ۋ~g#S^q:-< &nwlǵ4 Z+-R!ekEwWUKT⒏E:'%mK`!i>R{k!bi4V3XT<O$[eỡܭ)³$`GDA3}缩g涣A jmwpUE0p>7OHjwl;'/G'?[{kE|;̔-u\ kM_U_s 2 |kM%%&p$ M{fr+ 7~=nɸ!E'͖xLM>_'h5dnV،SLsQWJR'2_V#V, }?COn=Y iZTX-?t>"7IƋ_zwon3PSҢ35N')S*?2}ĜdCf>%J:6>kӿ=ZO S_I㿙7^@=R=?I::7R'wb?Qy_bF5 y ^`T&rP J cdݤ~D楒YȼS`%H"0hm)$=xQ-d A[xՋX7`(Ryj%V^ٖ;<0|{@A|<Qޣ5jgL4 }\}2xabx 﫷B%{UO~uKzy֘WB:3OXK]Ma57ybG]xK L$&BZ/E%z"Yz} GsBsBsBsBsBVҨ gA9 z^\y0,E/ Z 85e/8"A|l',a`X` yL*zUzK#ڵ.!_e.ݰk&` 1tz]G6367L 3V h.䨟 o46XwTz*֖N;rAlV A HA0! |}a'">;u[/ߍh1RI)K]<ܱfkQ ̤HEC[l <ݬ B" HCK{#5 }}|;-B2Ʈo|ij2U\>(Lܻw( q }%S ݾx˙O7xĶ|(E|69P?N vi*VyJA`nΝco P>k~UK /1RW~Έz?T&O2 Svuh6 `aV3/01 7v.FL\NQXcJ: (9s/ST#䉯k"w1<7&UVp;FwKē{/.~OĆJAѵ⟎BRG),KnoRHqH*XER] я TeQO:8'C(UNsnK(aZ"cWF؇Bj !/Dn~aI{r&sϘ$:qmMMu&^ kaPs,blRK'p. ~c) khxB,Twx^#AKfRl̍kt=Lhh,vx!`ȥpL1zfZ8TK.>% %ڋӊ,ƻ.c 2u5WHk̘xy4vlNz yԥBMETChRx#-F5נ7m?)fF<@&L8h;b >Vڹ~Ĵq yK-y-J4sS%;7Y}qOymE8a<܉ .?| Od5hMaZ9 ~rQ Dc'4'U"cmjj~bT*c7tCy^ ߩ^#+5PUk%r6fnLV >3G>eZ%x>kNBOK.{z^{n?rY-kTۚg-x>t Hч%sDD&F:<}Q-Dr1&RTa>>(-^awvᮥ&cDzmVJ$h' k 㽻m% Dhc՟vxzh Huwܦrs>^3B;sJ'T^sn?L\oz%g{3.Yq(Մlk[s!ۥ]aiJ %N09l6a: t KT L#V¯nJzV9{6يjmɈ1(4uIT@!'vQ]Q s9CXOcΣ2!K,YJ3DqU@y+LL͂zĂB|~L­!~RBtSW_έ03L\Xej xpxm))? |43L6kR>ɖàzP8Y|obyLgA~\b @Ԑ0(JIB uXRFB(6s 7\H릧o u;5u_F`p3W .Ԕj> MZ E>gٕa)XQʉ/fE3Uu ӄ^I+\QY / PIj WuGSIS`ٷCsgrֻ&MrvnǓuj]EAa[kp RKIwsپ\r3ӃRf&E`<ejf9ši'\ «Q_]dqxixID_04edx#Ue=DU@*:ǴUO!~պnj6Z[AgN|vuI|Χ1uR\jsg# )n}>e;MjV}QyxQ?d f_C&pj3彌rР(?g@ g#\~5;;\(:sQw25>3?C">vnt݌w~7 >зA.ЧA..g7? D'(Q~dwQ{1 ?s w1~=O/C@2U\W_\gOo_>f'(UѿO@Orߛ o2ڿ\'I73y S.rq/ 苬 OY射<(? }V)@yJ ,c2\)ϐ s;[?[vN{BX\Jzp+W^M7qմ m {}h}1Ɨ^ZG%/ZlRCA)q. 3l?V\[[,Oнۺ{'ϊ'NW4C\YO%b}+r>VDjq&R2#s"qǾJ91baOd_ël0[QǒGl.Ñp[{%?|Ka['? fVt{rU%݆n Fn_~L| ~iMnڧ\v<2kӫk+ckp'k͠~%sē"iN^|#]MfDr&߲)tO /ADlZeSͶb1(V|_sS [2FlX XJr ;9(.c˃]bs1r:=fG<0 ;VWs.󡟼!<= " n+QeLZDAYM znҸ|T3I n´kT<ZݝOi3A ҷH࣭A{-ЧFsFo"9ţ:aѡ(Yc{XnD823ww^N]Lk۷]Xn:PɻwtQh.lY8=ۚ9l؆"dW٭Eu7L[Τ!K5 D 9bW_L ΄ݛ&u'2oz^Dl,+- O*HQq1^R”s]qSumWHm{X|@ăx!$K/<>,D*9"[o %P@EikI/?H3軉Wd&%}YQ v.ychFʪv\J^T~7(R\w|7(6JOfͻ᷃#J0`t9լ`סS?2d9-/;"5 m'#84B>ԼlQ޺qml.; +CR^p穎TU|K C2ћ!]c :۳|?Oe Lt4/57b([|ӼE^?Fu:l/Asl2qjԷ3@FWD0;"ZY}KE%&(Xp\'A6Ιim9;>Ba2\DGx kyf#ŧ3W<2ZP/jdVw@8̝,ӟ~H϶I5"`:=Vڕ+zYLn2?Zb @Jܜ T\A-݌S}k+Wei$ցi8ǩ[mx{ uuke!.1:7f˟]챾Wqٮ7GL}Ӱ+` j7E]EtA<;<#&q®"vyX@cb3,LڙBα ya1 +o3Љe{0^ζpN&}k\ȏ,,L[녗Z']Y!hXj=E"ҁ )Q~9'vX33}"@a)5ZBLN Po3pRaL (b[и[zw0XjPtP9˓Z0 9\Mhc{pfif(Rc9bfrW`0MڌkASsLeU|t#GYEL`&;]+N%t&ж?8 acT 1L(_Y,RYדWv!{Zq΋|E>WNENE<<Sf}')VSL_Xџ_,P>I*g\@qeaVt*N핋 P.Y۹|C*'Uώ7_a}BeFBl4*7њE:?#KoyI˖VP- QwjA0}U\OVz Cos g\JRSk$5XVfLNƇZھ w66BKFslx61}.