MCSMLab

View Original

Exchange 2013 SP1: DLP Fingerprinting

One of the major new features to Exchange in Exchange 2013   is data loss prevention. DLP aides your company in ensuring that sensitive   data is not leaked from your organization. Exchange 2013 SP1 adds an improvement   to DLP in a feature called DLP fingerprinting.

Document Fingerprinting expands DLP capability to enable   you to identify standard forms used in your organization, and then have   exchange recognize those forms are sensitive information. For example, you   can create a fingerprint based off a blank tax form, and then detect all matching   tax forms with sensitive content filled in.

To create a document fingerprint, simply upload a blank   form, such as an intellectual property document, government form, or other   standard form used in your organization. Once you have created a document   fingerprint, it becomes part of the sensitive   information types that you can use to customize your DLP policies. You   can then create transport rules to detect documents that match a document   fingerprint when users try sending them over email. This will allow you to   apply DLP policies, like encrypting the document or providing a notification   to the user via Policy Tips.

  1.   In the EAC, navigate to compliance management > data loss   prevention.
  2.   Select Manage   document fingerprints.
  3.   In the document fingerprints page, select Add  to create a new document   fingerprint.
  4.   Give the document fingerprint a name and   description.
  5. 5.       To   upload a form, select Add .
  6.   Choose a file and select Open.
  7.   Select Save.

The document fingerprint is now part of your sensitive   information types, and you can add   it to a DLP policy or add   it to a transport rule via theIf the message contains…Sensitive Information condition.