|
|
|
The Encrypt options for Data In Motion control actions are intended to protect sensitive files when they are saved onto removable devices such as USB drives. They are specifically designed for the employee who needs to take sensitive files home to work on them in the evening or over the weekend.
CA DLP encrypts these files when they get copied onto the USB drive for the journey home. When the employee gets home, they run a CA DLP utility (also stored on the USB drive) to decrypt the files onto their home computer. In the morning, the process is reversed. The updated files get re-encrypted when the employee copies them from their home computer back onto the USB drive. When they arrive at the office, they run the same CA DLP utility to copy unencrypted versions from the USB drive back onto their office computer.
In technical terms, the CA DLP Client File System Agent detects files being copied onto removable devices and invokes Data In Motion triggers. If a trigger fires, an Encrypt control action gets applied to the file.
To use this feature, you need to edit the CA DLP machine policy to specify which devices to monitor. You then need to configure your Data In Motion triggers and actions to detect and encrypt sensitive files. Finally, you need to educate your users so that they know how to use the CA DLP Encryption utility when copying these files to and from USB devices.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |