DataLeakTest

Updated 1/8/2021

DLP Validation & Testing

*new DLP Solutions Report!

Your public IP address is: 3.237.205.144; IP info : Session Info

DLP Help

SSL is: on ;  more info

DLP Auditor

POST Test

GET Test

Upload Test

Email Test

FTP Testing

DLP Info

Services

  Data Protection Solution Capabilities Report;
Traditional, CASB, and API-based DLP Solutions

updated: 12/29/2020

DLP product feature comparison.

Independent, not a pay for play solutions survey.
Findings below are "their words", and not a reflection of our views. Study performed with public data and vendor participation where noted.
Participants performed a demonstration of features surveyed.

This material is for educational use only.

All vendors have been invited to take part in this survey.
Submit additions & corrections to report@dataleaktest.com

Full Support (FS) | Partial Support (PS) | Unsupported (-)
 


Architecture = On-Premise DLP CASB DLP Native Cloud API DLP (SaaS) App Integrated DLP (IaaS)
Requirements & Definitions Endpoint Proxy SSL inspection Data Redaction Encryption OCR Endpoint Cloud Proxy ATO Defense Web Protection DLP Secure Edge Data Redaction OCR AI Policy AI Classification Cloud Email ATO Defense Data Redaction Github Storage Email Collaboration Social
Symantec FS FS FS FS FS FS FS FS FS FS FS FS - - - - - - - - FS - -
Forcepoint FS FS - FS FS FS FS FS FS FS - - - - - - - - - FS FS - -
Digital Guardian FS - - FS - - - - - - - - - - - - - - - FS FS - -
McAfee FS FS FS FS FS FS FS FS FS FS FS - - - - - - - - FS FS - -
Trend Micro FS FS - FS - - - - - - - - - - - - - - - FS FS FS -
NetSkope - - - - - FS FS - FS FS FS - FS - FS FS FS - - FS FS FS -
Gamma - - - - - - - - - - - - FS FS FS FS - - FS FS FS FS -
Nightfall - - - - - - - - - - - - FS - FS FS - FS FS FS FS FS -
CoSoSys FS FS - FS FS - - - - - - - - - - - - - FS FS FS FS -
Fidelis FS - - - FS - - - - - - - - - - - - - - - FS - -
GTB Technologies FS - FS FS FS - - - - - - - FS - - FS FS - FS FS FS FS -
Clearswift FS FS FS FS FS - - - - - - - - - - - - - - - - - -
Infowatch FS - - FS FS - - - - - - - - - - - - - - - - - -
Somansa FS FS - FS FS - - - - - - - - - - - - - - FS FS - -
Cyberhaven FS - - FS - - - - - - - - - - - - - - - FS FS - -
ZScaler - FS - - - FS FS - FS - FS - - - - - - - - FS FS - -
SecureTrust - - - - - - - - - - - - - - - - - - - - - - -
Checkpoint FS FS - FS - FS - - - - FS - - - - - - - - - - - -
Sophos FS - - FS - - - - - - - - - - - - - - - - - - -
Code42 FS - - FS - - - - - - - - - - - - - - - FS FS - -
Safetica FS - - FS - - - - - - - - - - - - - - - FS - - FS
Teramind FS - FS - - - - - - - - - - - - - - - - FS FS - -
Google Cloud DLP - - - - - - - - - - - - FS - - - - FS - - - - -
CipherCloud - - - - - FS FS - FS - FS - FS - - - - - - - FS FS -
Bitglass - - - - - FS FS - - - FS - FS - - FS - - FS FS FS FS -
Boxshield - - - - - - - - - - - - - - - - - - - FS - - -
Cisco CloudLock - - - - - FS FS - FS FS FS - - - - - - - - - - - -
LeaksID - - - - - - - - - - - - - - - - - - FS FS FS FS -
ManageEngine FS - FS - - - - - - - - - - - - - - - - - - - -
ObserveIT FS - - - - - - - - - - - - - - - - - FS FS FS - -
PaloAlto Prisma - - - - - FS FS FS FS FS FS - - - - FS FS FS - - - - -
Proofpoint - - - - - - - - - - - - - - - FS - - - - FS - -
SilverSky - - - - - - - - - - - - - - - - - - - - FS - -
ActiveCypher - - - FS - - - - - - - - - - - - - - - - - - -
Data443 Protect FS - - FS - - - - - - - - - - - - - - - - FS - -
Data Rover EP - - - - - - - - - - - - - - - - - - - - - - -
DeviceLock DLP FS - - FS FS - - - - - - - - - - - - - - - - - -
Evolution DLP FS - - FS - - - - - - - - - - - - - - - - - - -
Comodo DLP FS FS - - - - - - - - - - - - - - - - - - - - -
BetterCloud - - - - - - - - - - - - - - - - - - - FS FS FS FS
Falcongaze FS FS - - - - - - - - - - - - - - - - - FS FS FS FS
Matrix42 FS FS - - - - - - - - - - - - - - - - - - - - -
Redacted.ai FS - FS - - - - - - - - - - - - - - - - FS FS FS -
InfoSecEnforcer FS - - - - - - - - - - - - FS FS FS - - - FS FS FS -
Netkiller DLP - - - - - - - - - - - - - - - - - - - google - - -
ArmorBlox - - - - - - - - - - - - - - - FS - - - FS FS FS -

  Requirements & Definitions  
  Full Support (FS): Fully supports base functionality

Unsupported (-): Reports current configurations

Partial Support (PS): Provides a subset of control validation

Roadmap (R): Planned support


 
  On-Premise DLP
The more traditional architecture commonly consisting of endpoints and sensors you deploy to your environments.

Endpoint: Has a stand-alone endpoint that can work offline and enforce data security policies

Proxy SSL inspection: Reports or tests  the controls that prevent fake and lookalike domains, and attempts to send email as an internal user to trick your users


Data Redaction: The ability to remove or replace sensitive data

Encryption: Email connection security is very important for stopping email spoofing and fraud. Many vendors claim to provide enforcement level of email fraud protection but actually leverage a scoring system which should be looked at closely.

OCR: Optical Character Recognitions or the ability to detect data in imagery.


 
  CASB DLP 
CASB architecture commonly consisting of endpoint clients (agents) and proxies deployed in a hybrid-hosted configuration. This configuration commonly supports SASE edge deployments.


Endpoint: A standalone endpoint that enforces policy to redirect traffic to a CASB cloud proxy

Cloud Proxy: The cloud enforcement broker/ proxy

ATO Defense: Tracks login behavior; has ATO detect & defend and re-challenge with multi-factor-authentication (MFA)

Web Protection: Provides web filtering to prevent visits of unwanted web sites

DLP: Data monitoring and blocking for data to and from the internet

Secure Edge: VPN based edge enforcement

Data Redaction: The ability to remove or replace sensitive data


 
  Native Cloud API DLP *dataleaktest.com recommended architecture
Cloud architecture commonly consisting of a full hosted configuration with no agents or endpoints. DLP protection is provided within the app-space. These will be the apps in the pre-built cloud marketplaces that provide click integration.


OCR: Optical Character Recognitions or the ability to detect data in imagery for cloud apps

AI Policy: Leverages ML/ AI learning policies based on behavior

AI Classification: AI Data Classification, leveraging ML/AI to determine data classification

Cloud Email: Has a direct API integration with the email inbox

ATO Defense: Tracks login behavior; has ATO detect & defend and re-challenge with multi-factor-authentication (MFA)

Data Redaction: The ability to remove or replace sensitive data


 
  App Integrated DLP
Integrated architecture commonly consisting of endpoints and proxies deployed in a hybrid-hosted configuration. Computation of DLP is external to the app-space. These apps are not in a pre-built cloud marketplace and a more complicated to integrate than direct "Cloud API" above.


Github: Data policy monitoring and enforcement for Github

Storage: Data policy monitoring and enforcement for cloud file storage

Email: Data policy monitoring and enforcement for cloud email providers

Collaboration: Data policy monitoring and enforcement for messaging and collaboration tools

Social: Data policy monitoring and enforcement for social media



 
     
 
 

---ads by google---


Donate to help build free tools: donations help to pay the bills

---ads by google---


Instant DLP help

 

 

Have data security questions? Want expert advice? Just want to say hello or give suggestions?

Please use the form to instantly email our team.
Name:  
Email:  
Phone:  
Message:

---ads by google---


---ads by google---


 


2021 IGNITE Cyber