Browse Prior Art Database

Use of Endpoint Anti-virus Health Status in DLP Policies

IP.com Disclosure Number: IPCOM000201329D
Publication Date: 2010-Nov-11
Document File: 4 page(s) / 40K

Publishing Venue

The IP.com Prior Art Database

Abstract

A parameter indicating the anti-virus (AV)/OS health of an end-point can be exposed in DLP policies. This will facilitate an administrator to apply a different set of DLP policies if the anti-virus health of an endpoint is compromised.

This text was extracted from a Microsoft Word document.
This is the abbreviated version, containing approximately 54% of the total text.

Use of Endpoint Anti-virus Health Status in DLP Policies

Amit Verma  

Symantec Corporation

Abstract

A parameter indicating the anti-virus (AV)/OS health of an end-point can be exposed in DLP policies.  This will facilitate an administrator to apply a different set of DLP policies if the anti-virus health of an endpoint is compromised.

Copyright © 2010 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.  For a full list of Symantec trademarks, please visit

http://www.symantec.com/about/profile/policies/trademarks/currentlist.jsp

Any Symantec products described in this document are distributed under licenses restricting their use, copying, distribution, and decompilation/reverse engineering. No part of this document may be reproduced in any form by any means without prior written authorization of Symantec Corporation and its licensors, if any.

THE DOCUMENTATION IS PROVIDED “AS IS” AND ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT, ARE DISCLAIMED, EXCEPT TO THE EXTENT THAT SUCH DISCLAIMERS ARE HELD TO BE LEGALLY INVALID. SYMANTEC CORPORATION SHALL NOT BE LIABLE FOR INCIDENTAL OR CONSEQUENTIAL DAMAGES IN CONNECTION WITH THE FURNISHING, PERFORMANCE, OR USE OF THIS DOCUMENTATION. THE INFORMATION CONTAINED IN THIS DOCUMENTATION IS SUBJECT TO CHANGE WITHOUT NOTICE.

Symantec Corporation

350 Ellis Street

Mountain View, CA 94043

United States

http://www.symantec.com

Use of Endpoint Anti-virus Health Status in DLP Policies

Problem Statement

The state of the anti-virus and DLP solutions work almost independently on an endpoint.  If the anti-virus/OS security is compromised on an endpoint, this endpoint should not be treated as other endpoints from a DLP perspective.  For example, the endpoint having compromised anti-virus/OS security should not be permitted to deal with highly confidential data because the virus attacks (due to compromised AV) can put the confidential data at risk.  Therefore, a mechanism is needed to configure DLP policies based on the health of an endpoint so that administrators can restrict the flow of confidential content to unhealthy endpoints.

Invention Description

A method of configuring DLP policies based on the health of an endpoint comprises the following:

  1. Configure the organization wide DLP policies based on...