摘要 |
In cloud platforms, such as enterprise collaboration workspaces, data loss prevention (DLP) is performed by comparing contents of a file with rules, determining whether a rule is triggered (102), and performing a responsive action (103). A service level agreement can also be updated (104). A rule can be triggered after a character based search of sensitive or confidential information: financial information, credit card and bank account numbers, Personally Identifiable Information (PII), Social Security Number (SSN), health information, source code. A responsive action comprises quarantine, notifying an administrator, locking down the file, suppressing notifications to users, email alerts. Competing uploads can reconcile quarantined drafts with collaborators revision by branching separate storage of a quarantined version and a version where violated content is removed. An automation interface allows administrators to configure rules (101), modify upload, download, sharing policies, and create new policies to prevent disclosure of sensitive information in the collaboration process. |