Glossary
DLP
Tools that spot and block unauthorised sends of sensitive information out of the organisation.
DLP (data loss prevention) monitors sensitive data to prevent it leaving without authorisation, by email, USB stick or cloud. It relies on a classification of data and rules that block, alert or encrypt depending on the case. Well tuned, it protects without hindering work; badly tuned, it blocks wrongly.
See also
FirewallA filter that controls network traffic and allows or blocks connections according to rules.WAFA specialised firewall that protects a website from attacks such as code injection.SandboxAn isolated space to open a suspicious file or program without risk to the real system.Administration bastionA single, monitored point of passage through which administrators access sensitive systems.