Blog

Managed File Transfer and Network Solutions

Data Loss Prevention in Email Attachments

Posted by Rick Stevens on Wed, Sep 14, 2011 @ 10:11 AM

data loss prevention email

This tutorial will address a common problem of data leak prevention with email attachments and how the JSCAPE MFT Server can help solve this issue.

Download JSCAPE MFT Server Evaluation

In this tutorial we'll demonstrate how to configure the JSCAPE MFT Server DLP module to flag a document containing credit card numbers attached to an email message. We are using a plain-text document (test-cc.txt) that contains the following sample credit card numbers. These credit card numbers will validate but are not in use.

American Express: 378282246310005
Discover: 6011000990139424
MasterCard: 5555555555554444
Visa: 4012888888881881

This tutorial is divided into two objectives, configuring the JSCAPE MFT Server, and Testing the JSCAPE MFT Server. Each objective has a series of tasks necessary to complete each objective. Each task contains one or more steps to complete the task.


Configuring JSCAPE MFT Server

In this objective, we'll complete the necessary tasks to set up and enable ad-hoc email transfers and the Data Loss Prevention parameters.


Enable ad-hoc email transfer for JSCAPE MFT Server. Enable the ad-hoc email transfer

In this task we'll complete the following steps to enable the ad-hoc email feature of JSCAPE MFT Server.

  1. From the File Menu, select Settings.
    The MFT Server Settings dialog box is displayed.
  2. Click the Email option in the settings panel.
  3. Click the Ad-Hoc Email Transfer tab.
  4. Ensure the Enable ad-hoc email transfers option is checked.
  5. Click OK to accept your settings and dismiss the MFT Server Settings dialog box.

The remaining default settings are sufficient for this tutorial. Please refer to the JSCAPE MFT Server online reference, Email Transfers, Enabling Email Transfers for more information about additional settings.


Edit User for desired domain.MFT Server User Listing

In this task we'll complete the following steps to edit an existing user.

  1. Click the Users node under the desired domain.
    A list of valid users is displayed, if any.
  2. Select the desired user.
  3. Click the Edit button.
    The User Account settings dialog box is displayed.

Please refer to the JSCAPE MFT Server online reference, Server Configuration, Adding Users for more information about adding users and the associated settings.


Enable the ad-hoc email transfer option for the desired user.Enable the ad-hoc email transfer option for the desired user

In this task we'll complete the following steps to enable the ad-hoc email transfer for this user on the User Account settings page as displayed from the previous task.

  1. Scroll to the bottom of the User Account settings page.
  2. Ensure the Enable Ad-hoc email transfer option is checked.

Please refer to the JSCAPE MFT Server online reference, Server Configuration, Adding Users for more information about additional user settings.


Enable DLP for Virtual Paths.Enable DLP for Virtual Paths

In this task we'll complete the following steps to enable the DLP option for the virtual paths associated with this user.

  1. Click the Paths tab at the top of the User Account settings dialog box.
    A list of virtual paths is displayed, if any.
  2. Select the desired virtual path.
  3. Click the Edit button.
    The Edit Virtual Paths dialog box is displayed.
  4. Ensure the Enable DLP option is checked.

Please refer to the JSCAPE MFT Server online reference, Data Loss Prevention (DLP), Enabling DLP for more information about DLP settings.


Edit DLP Settings.Edit DLP Settings

In this task we'll complete the following steps to add the DLP rules that we want applied to this user account.

  1. Click the Settings button located to the right of the Enable DLP option.
    The DLP Settings dialog box is displayed.
  2. Click the Add button.
    The DLP Rules dialog box is displayed.

Please refer to the JSCAPE MFT Server online reference, Data Loss Prevention (DLP), Enabling DLP for more information about DLP settings.


Select DLP Rules.Select DLP Rules

In this task we'll complete the following steps to use predefined DLP rules to analyze the attached file content for credit card data.

  1. Select the desired rule from the DLP Rule drop-down list.
  2. Select the desired access type from the Access drop-down list.
    For this tutorial, we'll select Deny Ad-Hoc.
  3. Ensure the Enabled option is checked.
  4. Click OK to accept your entries and dismiss the DLP Rules dialog box.
    The DLP rule is now displayed in the DLP Settings dialog box.
  5. Click OK to save your entriy and dismiss the DLP Settings dialog box.
    You can continue to add DLP Rules to match the example credit card provider listing as shown at the beginning of this tutorial.
  6. Click OK to save your entries and dismiss the Virtual Paths dialog box.
  7. Click OK to save your entries and dismiss the User Account dialog box.

Please refer to the JSCAPE MFT Server online reference, Data Loss Prevention (DLP), Creating DLP Rules for more information on creating your custom DLP rules.


Testing the JSCAPE MFT Server

In this objective, we'll complete the necessary procedures to initiate an ad-hoc email transfer and view the Data Loss Prevention results.


Select the Email Attachment File.Select Email Attachment File

In this task we'll complete the following steps to select our test credit card file as the attachment to our email.

  1. Login to the JSCAPE MFT Server Web Interface.
    By default, the My Storage view is displayed. If you have the My Account view set as your default display, you can click the My Storage link, located in the upper-right corner of your web browser.
  2. Select the text-cc.txt file.
    When you select one or more files, additional options are enabled on the toolbar. Specifically, the Email Files option is enabled.

Select the Email Recipients.Select the Email Recipients

In this task we'll complete the following steps to select the recipients for our email.

  1. Click the Email Files option.
    The Email Files dialog box is displayed.
  2. Enter the recipient email address.
    You may also select one or more receipients from your contacts list by clicking the Contacts icon.
  3. Click the Send button to initiate sending the email.

Please refer to the JSCAPE MFT Server online reference, Email Transfers, Managing Contacts for more information about using the contacts list.


Viewing Email Attachment

In this task we'll complete the following steps to download and view the email attachment.

  1. Open the email.
    The default email message is,
    test has sent you the following file(s). To download the file(s) please click on the respective link(s) below.
    
    Name: test-cc.txt
    Size: 215 byte(s)
    Expires: September 17, 2011
    Download: http://127.0.0.1:8081/download?domain=localhost&id=kPxr60dHlWpmrlDgGPEx-PVo4ud4HmxFN
  2. Click the Download link.
    A browser window is opened and the following message is displayed,
    DLP rule matched. Access denied.

Data Loss Prevention in Email Attachment Results

Configuring the JSCAPE MFT Server in this manner prevents the selected user from using the ad-hoc email transfer option for the selected virtual path and when the file content matches the enabled DLP rules. While the specified user may work with the sensitive documents as part of their normal routine, the JSCAPE MFT Server helps prevent leaking sensitive data to unauthorized recipients.


Summary

You should have noticed a couple of key points while working through this tutorial. Namely, you can enable ad-hoc email transfers on a per-user basis. You can define DLP rules also on a per-user basis. Lastly, you can enable DLP rules for selected virtual paths on a per-user basis. You can see from these combinations just how tightly you can configure the JSCAPE MFT Server to prevent data loss with email attachments throughout your enterprise.

Download JSCAPE MFT Server Evaluation


Additional References

Ad-Hoc File Transfer - Solving the Problems of File Attachments

Managing Users with JSCAPE MFT Server

Topics: JSCAPE MFT Server, Managed File Transfer, Data Loss Prevention