Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 1 subscriber
  • Views 5227 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Data Control - from USB to hard disk

toddh

Hey,

I have been testing out the Data Control policy a little bit.

I have setup some very basic rules to block the copying of Microsoft Office documents to USB keys and so far its working great.

I then wanted to see if I could set it up to prevent .exe's to be copied to USB keys, and that is also working great.

I was wondering though if I can get the blocking to work when a user copies data from a USB to the local hard drive.

For instance, I want to block a user from copying an executable from their USB key to the local hard drive.

In the data control policy under "device types" I have the destination options for Floppy, optical drive, and USB, but no hard disk.

I am not sure if I am looking in the wrong spot, or if this even makes sense to have as an option. But I was just curious if I can set this up?

Thank you

Cheers

:5676


This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    Good question - and QC highlights some of the challenges in implementing a "hard drive" option for data control. We have looked at blocking executables being copied off USB keys as part of the device control policy but the feature has never got high enough up the priority list to compete with some of the other things we want to do for device control (e.g. add MTP / PTP device blocking) or best protection. Any malware stored on the USB key should be blocked by AV/HIPs and application control will cover many of the applications that users want to bring in from home and will also pick up any "portable" apps download via a browser. For data control our next big priority is data discover - i.e. scanning for sensitive data on endpoint hard drives and file servers. In principal you could use that capability to do a scan of unwanted executables tucked away on the network - same for media files.

    Best regards,

    John

    :5699
Reply
  • 0

    Hi,

    Good question - and QC highlights some of the challenges in implementing a "hard drive" option for data control. We have looked at blocking executables being copied off USB keys as part of the device control policy but the feature has never got high enough up the priority list to compete with some of the other things we want to do for device control (e.g. add MTP / PTP device blocking) or best protection. Any malware stored on the USB key should be blocked by AV/HIPs and application control will cover many of the applications that users want to bring in from home and will also pick up any "portable" apps download via a browser. For data control our next big priority is data discover - i.e. scanning for sensitive data on endpoint hard drives and file servers. In principal you could use that capability to do a scan of unwanted executables tucked away on the network - same for media files.

    Best regards,

    John

    :5699
Children
No Data