Trend Micro - Securing Your Web WorldTrend Micro Data Loss Prevention

Comprehensive Data Loss Prevention Mitigates Risk and Improves Visibility

Trend Micro Data Loss Prevention

Overview:

Data loss prevention (DLP) is critical to stop accidental and malicious data leaks—whether it's customer information, financial data, intellectual property or trade secrets. Today's enterprise must be able to identify, track, and secure all confidential data at rest, in use, and in motion. This is increasingly difficult due to growing risk factors, including mobile

Trend Micro Data Loss Prevention is a family of solutions designed to minimize the risk of information loss and improve your visibility of data usage patterns and risky business processes— so your private information remains secure. You'll gain broad coverage, high performance, and deployment flexibility needed to comply with regulatory mandates. Trend Micro DLP solutions also offer advanced DataDNA™ fingerprinting to secure unstructured data and intellectual property, whether on or off the network.

Protection Points

  • Data in motion, at rest, in use
  • Mobile, branch, corporate
  • Endpoints online, offline
  • Corporate networks
  • Public networks
  • P2P, Skype, Active Sync and more

Data Loss Prevention

  • Mobile Workers
  • Internal Authorized Users
  • Accidental data loss
  • Malicious data loss
  • External Threats
  • Data-stealing malware
  • Hackers
  • Partners/Suppliers

Trend Micro™ DLP for Endpoint

  • Supports compliance with industry regulations
  • Educates users on corporate data usage policies
  • Protects unstructured data and intellectual property
  • Supports multi-function capabilities such as real-time monitoring, blocking and data discovery functions—via a single, lightweight agent

Trend Micro™ DLP Network Monitor

  • Inspects your network 24x7 with real-time monitoring
  • Powered by Trend Micro Smart Protection Network™
  • Tracks and documents sensitive data flowing through network egress points
  • Aids in compliance, identifies risky business processes and improves corporate data usage policies

Trend Micro™ DLP Management Server

  • Provides a central point of visibility and control for discovery, fingerprint extraction, policy enforcement, and reporting violations
  • Available as a hardware appliance or software virtual appliance—for greater flexibility and lower costs

Track and Protect Your Data—Wherever It Goes

Trend Micro Data Loss Prevention solutions reduce cost and complexity with fast deployment and real-time monitoring—in your choice of standalone solutions and plugin modules. Our DLP solutions protect your data with the broadest coverage across file types, applications, and devices—from IM and Skype to CDs, USB drives, and ActiveSync. You’ll also gain greater visibility into data usage patterns and risky processes, making it easier to keep your data secure. Our DLP plug-in modules plug into your existing Trend Micro security, reducing the cost to deploy and manage DLP.

Choose Protection that Meets Your Needs

Trend Micro DLP for Endpoint helps you comply with industry regulations by securing employee and customer data. It also offers highly accurate DataDNA™ fingerprinting technology to secure unstructured data and intellectual property.

Trend Micro DLP for Network* monitors your network 24x7 to identify and document data loss across a variety of threat vectors. *Expected Q2 2010

Data Loss Prevention
Key DLP Features for Endpoint for Network
Discover, monitor, block and encrypt private data with real-time view of endpoint status Yes, Included

Supports
monitoring only
High-performance, low-impact filtering based on keywords, meta data and regular expressions Yes, Included Yes, Included
Granular policy enforcement by ActiveDirectory user or group, Windows domain, and endpoint groups Yes, Included Yes, Included
Control of input/output devices: USB, CD/DVD, IrDA, Bluetooth, COM and LPT ports, and more Yes, Included  
Broad coverage of communication systems: email, webmail, IM, P2P, FTP, Skype, Windows File Share, ActiveSync, and more Yes, Included Yes, Included
Low administration and TCO with new UI, alerts, 10xs faster deployment, compliance templates, encryption, and more Yes, Included Yes, Included
Intellectual property protection using DataDNA™ technology with 90% smaller fingerprint for higher performance, scalability and accuracy Yes, Included Supports
monitoring only

 

Features & Benefits:

Key Benefits:

  • Protect Privacy - Discover, monitor and prevent confidential data loss—on or off the network
  • Secure Intellectual Property - Identify, monitor, and protect critical company assets—on or off the network
  • Comply with Regulations - Implement controls for protection, visibility, and enforcement
  • Educate Users - Customize interactive dialogs to notify employees of risky behavior and require user-justification where appropriate
  • Discover Sensitive Data - Find sensitive data on laptops, desktops, and servers
  • Detect data-stealing malware - Identify botnets, hidden FTP processes, keyloggers, spyware, and Trojans that attempt to collect and send data

Key Features:

Lower Cost and Complexity

  • Provides faster time to protection with new push-button compliance templates
  • Saves time with new UI, Active Directory integration, and user/group policies
  • Streamlines IT with delegated administration plus end user device and access control
  • Offers pricing options and flexibility with two versions and multiple form factors

Expanded Privacy Protection

  • Helps ensure compliance with more inspection points—for the broadest coverage
  • Offers new filters for Skype, P2P, Windows File Share, ActiveSync, clipboard, and network printers
  • Defends other network channels including email, webmail, HTTP/S, FTP, and IM
  • Secures endpoint input/output such as file transfers to USB drives and CD/DVDs

Data-Stealing Malware Detection Powered by Smart Protection network

  • Identifies keyloggers, spyware, Trojans, and botnets that try to steal data

Data Discovery and Scanning

  • Locates sensitive data stored on laptops, desktops, and servers with radar-like precision
  • Employs policy enforcement and multiple matching engines for real-time protection
  • Continuously monitors data at rest, in use, and in motion to prevent data loss
  • Blocks unauthorized data transfers

Advanced Intellectual Property Protection

  • Protects unstructured proprietary data using DataDNA™ fingerprinting technology—for superior accuracy
  • Reduces fingerprint size by over 90%, increasing scalability without sacrificing accuracy
  • Improves performance with new endpoint fingerprint crawler for real-time identification

Interactive Employee Education and Remediation

  • Alerts employees to sensitive content and risky behavior with options to block or allow with proper justification
  • Uses dialog boxes to educate employees on appropriate handling of confidential information
  • Does not impact business processes

System Requirements:

Minimum System Requirements
Supported Microsoft Platforms for Trend Micro DLP Endpoint
  • Windows 2008
  • Windows 2003
  • Windows 7 (32-bit)
  • Windows Vista
  • Windows XP
Trend Micro DLP Endpoint
  • CPU: 300 MHz Intel™ Pentium™ or equivalent
  • RAM: 512 MB
  • Storage: 300MB
Trend Micro DLP Network Monitor Software Appliance
  • CPU: 2 x Intel® Quad Core X5550 Xeon® CPU, 2.66Ghz, 8M Cache, 6.40 GT/s QPI, Turbo
  • Memory: 8GB Memory (4x2GB), 1066MHz, Dual Ranked RDIMMs for 1 Processor
  • Hard Disk: 300GB 15K RPM SAS 3.5" Hot Plug Hard Drive
  • NIC: Intel PRO 1000PT 1GbE Dual Port NIC, PCIe-4
  • Certified to run on Dell R710
Trend Micro DLP Management Server Hardware Appliance
  • Purpose-built 1U rack-mountable appliance
  • Security hardened
  • CPU: Quad Core Xeon E5506 2.13GHz, PE R610
  • Memory: 6GB 1333MHz (6X1GB)
  • Storage: 250GB 7.2K RPM Serial ATA 3Gbps 2.5-in HotPlug Hard Drive
  • NIC: Quad Embedded Broadcom NetXtreme II 5709 Gigabit Ethernet NIC
Trend Micro DLP Management Server Software/Virtual Appliance
  • CPU: Intel XEON or AMD Opteron dual-core or equivalent
  • Memory: 2GB
  • Storage: 30GB
  • VMWare ESX and ESXi 3.5
Wide coverage of file types, applications, and devices
File Types Supported
  • Recognizes and processes 300+ file types
  • Microsoft™ Office files including Office 2007: Microsoft Word, Excel, PowerPoint, Outlook™ email; Lotus™ 1-2-3, OpenOffice, RTF, Wordpad, Text, etc.
  • Graphics files: Visio, Postscript, PDF, TIFF, etc.
  • Software/engineering files: C/C++, JAVA, Verilog, AutoCAD, etc.
  • Archived/compressed files: Win ZIP, RAR, TAR, JAR, ARJ, 7Z, RPM, CPIO, GZIP, BZIP2, Unix/Linux ZIP, LZH, etc.
Network/Applications Controlled
  • Email: Microsoft Outlook, Lotus Notes, and SMTP Email
  • Web mail: MSN/Hotmail, Yahoo, GMail, AOL Mail, and more
  • Instant Messaging: MSN, AIM, Yahoo, and more
  • Network Protocols: FTP, HTTP/HTTPS, and SMTP
Endpoint Devices Controlled
  • USB, CD/DVD, COM & LPT ports, removable disks, floppy, infrared and imaging devices, print screen, modems, PCMCIA

 

Services:

Trend Micro Data Loss Prevention Services

  • Simplify DLP with a comprehensive set of services
  • Provide expert assistance—from pre-deployment to maintenance
  • Reduce risk, accelerate time to protection, and optimize ROI

Pre-Deployment Services

Our security experts can perform a full Data Loss Assessment and develop a DLP Proof of Concept.

Data Loss Assessment

  • Provides a full analysis of external data loss
  • Includes an executive-level report highlighting risks within your company Data Loss Assessment Service

DLP Proof-of-Concept

  • Leverages Trend Micro DLP solutions to create a POC with live production data

Deployment Services

Simplify and speed deployment by letting Trend Micro experts design, size, configure, install, and optimize your DLP solutions.

Design & Deployment

  • Preps IT environment
  • Ensures the solution is optimally designed, sized and configured
  • Deploys and installs your DLP solutions and/or DLP modules
  • Includes a full knowledge transfer and sizing guide

Solution Optimization

  • Finds structured and unstructured data that needs to be protected
  • Provides data discovery and classification
  • Creates fingerprints of unstructured proprietary data
  • Modifies policies to fit your needs
  • Includes a full knowledge transfer and DLP best practice guide

Post-Deployment Services

We’ll keep your DLP solutions up-to-date and test your DLP policies between releases to ensure optimal data protection.

Product Upgrade Services

  • Provides upgrade services for all new releases
  • Migrates and tests policy between releases
  • Ensures full transfer of information (TOI) to all stakeholders

DLP Quarterly Business Review

  • Offers quarterly technical and business reviews
  • Checks for optimal DLP usage, effectiveness, and progress of phased adoption

Documentation:

PDF File
Trend Micro Data Loss Prevention Datasheet (.PDF)