Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Endpoint

12/14/2010
12:43 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Symantec Integrates Machine Learning Into DLP

Vector Machine Learning is designed to overcome the limitations of current detection technologies

MOUNTAIN VIEW, Calif. – Dec. 14, 2010 – Symantec Corp. (Nasdaq: SYMC) today announced it will offer Symantec Data Loss Prevention 11, which will focus on simplifying the detection and protection of enterprises’ most valuable information – their intellectual property. This major new release of Symantec’s market-leading data security suite plans to feature Vector Machine Learning, the market's first and only machine learning technology, designed to simplify the detection of hard-to-find intellectual property. Symantec Data Loss Prevention 11 is also expected to make the remediation process more efficient and effective with new Data Insight enhancements and to include additional security measures at the endpoint.

Click to Tweet: Symantec DLP simplifies the detection and protection of intellectual property and other sensitive data: http://bit.ly/gB4MJt

More Data, More Risk

Unstructured data is growing at a rate of more than 60 percent[1] per year and is becoming increasingly difficult to manage and protect. An organization’s most valuable information – its intellectual property – is often buried within a growing volume of unstructured documents, many of which are not sensitive. Unstructured data stores are also typically less secure than other data repositories, making them more vulnerable to data loss from both internal and external threats. As evidenced by targeted attacks such as Hydraq and other high profile losses of confidential documents, intellectual property is more vulnerable than ever before.

Easier to Identify with Vector Machine Learning

An organization needs to identify its sensitive documents before it can take steps to protect them. Data loss prevention has historically relied on two categories of detection technology: fingerprinting and describing the information. Fingerprinting requires collecting all the documents that need to be protected and assigning unique fingerprints to each file. The alternative, describing the data, involves the creation of regular expressions and keyword lists to identify sensitive documents. Fingerprinting can be challenging for organizations with widely dispersed data, and policies to describe data can be both time consuming to create and less accurate than fingerprinting.

Vector Machine Learning is a new innovation from Symantec which is designed to overcome the limitations of current detection technologies. Vector Machine Learning can be trained using sample documents to recognize the defining characteristics and identify the subtle differences between sensitive and non-sensitive data. This will eliminate the need to create keyword-based policies or try to fingerprint new documents as they are created. Vector Machine Learning is designed to allow a sample set of documents to be sufficient to create an accurate policy, and for its accuracy to be improved over time as additional positive and negative samples are fed back into the system.

Easier to Fix with Data Insight Enhancements

Symantec Data Loss Prevention 11 plans to include enhancements to Symantec Data Insight which will streamline the remediation process by identifying the locations where data is at the greatest risk and automatically notifying the associated data owners. The new Risk Scoring feature will prioritize folders for remediation based on the amount and sensitivity of data they contain as well as the folder’s accessibility. The new Data Owner Remediation capability will help facilitate data security awareness and protection by automatically sending email alerts to owners of the data at risk in shared storage, thereby increasing the effectiveness of an organization’s data protection initiatives.

Added Protection at the Endpoint

Symantec Data Loss Prevention 11 is expected to deliver multiple endpoint enhancements, including features designed to give organizations the flexibility to allow the use of a wider range of applications and storage devices while maintaining a strong data security posture. Application File Access Control is designed to ensure user-driven applications such as iTunes, Skype and WebEx can be used by employees without exposing sensitive data. The Trusted Devices feature will enable the use of a wide range of storage devices while assuring that sensitive data can be copied only to approved devices, such as devices issued and tracked by the company. Also new in this release is Endpoint FlexResponse, which is designed to make it easier for customers to extend data protection at the endpoint by integrating other Symantec and third party solutions, such as encryption and Enterprise Rights Management (ERM).

Supporting Quotes

"Continental Airlines is particularly interested in Risk Scoring and Data Owner Remediation features of Symantec Data Loss Prevention 11—with them, we expect to reduce the time it takes to locate and secure our confidential data. We have found that our ability to engage users in protecting their sensitive data is key to success, and this solution can help us with this objective,” said Cynthia Soares, Senior Manager, Information Security, Continental Airlines. "The ability to automatically monitor the status and health of our sensitive information stores will translate into significant cost benefits.”

“Symantec’s Vector Machine Learning technology will anticipate newly created sensitive data based on machine learning capabilities and dramatically improves an organization’s ability to protect unstructured data,” said Jon Oltsik, principal analyst, Enterprise Strategy Group. ”This is designed to enable organizations to more easily define, detect, and ultimately protect their intellectual property.”

“Symantec Data Loss Prevention 11 is focused on helping Information Security professionals to more efficiently and effectively protect the organization’s most sensitive information,” said Aaron Aubrecht, senior director, product management, Symantec Corporation. “We’ve heard from our customers that more accurate detection of intellectual property and risk-based prioritization of their actions are fundamental elements of an effective information protection program. Our Vector Machine Learning technology and Data Insight enhancements directly address those needs.”

Availability

Symantec Data Loss Prevention 11 is scheduled to be available in the first half of 2011.

Resources

* Presentation on SlideShare * White Paper: Machine Learning Sets New Standard for Data Loss Prevention: Describe, Fingerprint, Learn (PDF) * Blog Entry: Defending Against Threats to Intellectual Property * Box Shot: Symantec Data Loss Prevention 11 * Infograph: Why is Data Loss Prevention a Top Security Initiative?

Connect with Symantec

* Follow Symantec on Twitter * Join Symantec on Facebook * Symantec Connect Business Community

About Symantec Data Loss Prevention

Symantec Data Loss Prevention delivers a proven, content-aware solution to discover, monitor, protect and manage confidential data wherever it is stored or used. It allows you to measurably reduce your risk of a data breach, demonstrate regulatory compliance and safeguard customer privacy, brand equity and intellectual property.

About Symantec

Symantec is a global leader in providing security, storage and systems management solutions to help consumers and organizations secure and manage their information-driven world. Our software and services protect against more risks at more points, more completely and efficiently, enabling confidence wherever information is used or stored. More information is available at www.symantec.com.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
US Capitol Attack a Wake-up Call for the Integration of Physical & IT Security
Seth Rosenblatt, Contributing Writer,  1/11/2021
IoT Vendor Ubiquiti Suffers Data Breach
Dark Reading Staff 1/11/2021
The Data-Centric Path to Zero Trust
Altaz Valani, Director of Insights Research, Security Compass,  1/13/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-7343
PUBLISHED: 2021-01-18
Missing Authorization vulnerability in McAfee Agent (MA) for Windows prior to 5.7.1 allows local users to block McAfee product updates by manipulating a directory used by MA for temporary files. The product would continue to function with out-of-date detection files.
CVE-2020-28476
PUBLISHED: 2021-01-18
All versions of package tornado are vulnerable to Web Cache Poisoning by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with default configura...
CVE-2020-28473
PUBLISHED: 2021-01-18
The package bottle from 0 and before 0.12.19 are vulnerable to Web Cache Poisoning by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with defa...
CVE-2021-25173
PUBLISHED: 2021-01-18
An issue was discovered in Open Design Alliance Drawings SDK before 2021.12. A memory allocation with excessive size vulnerability exists when reading malformed DGN files, which allows attackers to cause a crash, potentially enabling denial of service (crash, exit, or restart).
CVE-2021-25174
PUBLISHED: 2021-01-18
An issue was discovered in Open Design Alliance Drawings SDK before 2021.12. A memory corruption vulnerability exists when reading malformed DGN files. It can allow attackers to cause a crash, potentially enabling denial of service (Crash, Exit, or Restart).