Close
  • Latest News
  • Cybersecurity
  • Big Data and Analytics
  • Cloud
  • Mobile
  • Networking
  • Storage
  • Applications
  • IT Management
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Menu
Search
  • Latest News
  • Cybersecurity
  • Big Data and Analytics
  • Cloud
  • Mobile
  • Networking
  • Storage
  • Applications
  • IT Management
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Applications
    • Applications
    • Cybersecurity
    • Networking

    Code Green Appliance Provides DLP Basics

    By
    Cameron Sturdevant
    -
    March 17, 2008
    Share
    Facebook
    Twitter
    Linkedin

      Code Green’s CI-750 provides affordable data loss prevention capabilities for SMBs and workgroups, but companies may end up paying a high cost for the savings.

      Code Green’s DLP appliance now uses algorithms to automatically identify various kinds of documents, including resumes and contracts; integrates with Microsoft Active Directory; and adds new policies to monitor for health care data.

      For smaller organizations and branch offices that need to ease into a DLP tool without dropping a ton of cash, the CI-750 (and its big brother, the CI-1500) is worth considering. You won’t get the bells, whistles, capacity or finesse that enterprise providers offer (including Symantec, which acquired Vontu in December 2007, or RSA, which acquired Tablus in August 2007), but the CI-750 did a good job in eWEEK Labs’ tests of identifying sensitive information in Web e-mail, file transfers and file shares.

      eWEEK Labs takes the CI-750 for a test run. Check out the images.

      The CI-750 starts at $10,000 and is designed for as many as 250 networked users; the CI-1500 starts at $25,000 and can accommodate up to 25,000 networked users. Code Green also makes an endpoint DLP agent.

      One major concern that arose during my tests of the CI-750 (all reviewed features apply to the CI-1500, which differs only in capacity) was that protected data was displayed in the clear on the management terminal. This puts IT staffs in the position of seeing protected data to which they might not normally have access. A Code Green official told me that data masking was in the works as an enhancement request.

      eWEEK’s Channel Labs also put Code Green’s CI-750 through its paces. See what they found.

      The CI-750 also leaves something to be desired when it comes to user management. While it’s possible to create user groups, it’s not possible to change the rights assigned to those groups. For example, I wanted to create a restricted user group so that administrators could see that a policy violation had occurred but wouldn’t be shown the actual detailed information. That’s not possible in this version of the product.

      Offending data highlighted

      In fact, rather than making it hard to see protected information, Code Green highlights in context the offending information. For example, the credit card numbers that I used in my test data were highlighted in the file in which they were found. So, as Robert Heinlein so aptly put it in “Space Cadet,” the question for any organization that uses Code Green’s product and others that don’t hide this type of data is, “Who will guard the guardians?”

      The CI-750, like almost all DLP tools, uses a combination of data fingerprinting and pattern matching to identify protected data.

      I went through the process of registering my data by telling the CI-750 to look for confidential content in files in repositories. I was also able to upload specific files for the identification of confidential information, although this is hardly practical for most organizations because it adds a time-consuming step to the data protection process.

      Check out these five steps to secure development.

      Data can be either structured data stored in Microsoft SQL Server or Oracle databases, or a file or unstructured data stored in a CIFS, SMB or NFS file share. Confidential data can also be fingerprinted from one of several content management systems, including Documentum’s and Stellent’s.

      I could also register patterns against which to match content moving across my network and could use new data tags to link registered confidential information to policy templates. This did reduce the amount of time I needed to spend when registering data.

      New in this version is an effective tool that allowed me to monitor for resumes, earnings press releases and patents without having to register the content beforehand.

      The CI-750 can also monitor content for U.S. tax forms and source code in the same manner.

      The appliance’s Web console is sluggish, but it provided reporting adequate for seeing what was happening in my network transmissions.

      Most shops will get the Code Green appliances from a reseller, so here are some issues you should include in an RFP to ensure that you’ll get a competent implementation and configuration.

      First, the CI-750 comes with about 20 default policies. Ask the reseller if it has experience creating policies and which ones apply to your business.

      Next, the CI-750 is only for content inspection. It must be integrated with either Cisco’s IronPort PXE or Voltage Security Networks’ appliances for e-mail encryption. And, companies that want to block Web and network traffic will need to get an additional ICAP (Internet Content Adaptation Protocol) proxy from a provider such as Blue Coat Systems. If your company needs these kinds of capabilities, ask the reseller if it has experience putting the whole package together.

      Avatar
      Cameron Sturdevant
      Cameron Sturdevant is the executive editor of Enterprise Networking Planet. Prior to ENP, Cameron was technical analyst at PCWeek Labs, starting in 1997. Cameron finished up as the eWEEK Labs Technical Director in 2012. Before his extensive labs tenure Cameron paid his IT dues working in technical support and sales engineering at a software publishing firm . Cameron also spent two years with a database development firm, integrating applications with mainframe legacy programs. Cameron's areas of expertise include virtual and physical IT infrastructure, cloud computing, enterprise networking and mobility. In addition to reviews, Cameron has covered monolithic enterprise management systems throughout their lifecycles, providing the eWEEK reader with all-important history and context. Cameron takes special care in cultivating his IT manager contacts, to ensure that his analysis is grounded in real-world concern. Follow Cameron on Twitter at csturdevant, or reach him by email at [email protected]

      MOST POPULAR ARTICLES

      Android

      Samsung Galaxy XCover Pro: Durability for Tough...

      Chris Preimesberger - December 5, 2020 0
      Have you ever dropped your phone, winced and felt the pain as it hit the sidewalk? Either the screen splintered like a windshield being...
      Read more
      Cloud

      Why Data Security Will Face Even Harsher...

      Chris Preimesberger - December 1, 2020 0
      Who would know more about details of the hacking process than an actual former career hacker? And who wants to understand all they can...
      Read more
      Cybersecurity

      How Veritas Is Shining a Light Into...

      eWEEK EDITORS - September 25, 2020 0
      Protecting data has always been one of the most important tasks in all of IT, yet as more companies become data companies at the...
      Read more
      Big Data and Analytics

      How NVIDIA A100 Station Brings Data Center...

      Zeus Kerravala - November 18, 2020 0
      There’s little debate that graphics processor unit manufacturer NVIDIA is the de facto standard when it comes to providing silicon to power machine learning...
      Read more
      Apple

      Why iPhone 12 Pro Makes Sense for...

      Wayne Rash - November 26, 2020 0
      If you’ve been watching the Apple commercials for the past three weeks, you already know what the company thinks will happen if you buy...
      Read more
      eWeek


      Contact Us | About | Sitemap

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Property of TechnologyAdvice.
      Terms of Service | Privacy Notice | Advertise | California - Do Not Sell My Information

      © 2021 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×