Forensic data quarantine

OfficeScan clients create and upload encrypted forensic data files to the server allowing companies to track and record the specific Data Loss Prevention incidents that occur on the network. OfficeScan generates a hash value for each forensic file for verification and integrity purposes.

Through integration with Control Manager, security officers can view the exact digital asset that caused each incident and take appropriate measures.

For details, see Forensic Folder and DLP Database.

Multi-rule DLP policies

Administrators can create multiple rules for a single policy. Each rule can contain multiple templates and administrators can assign specific actions depending on the type of digital asset identified or the channel through which the transmission occurred. Global exceptions apply to all rules in a given policy, avoiding the need to copy settings.

For details, see Data Loss Prevention Policies.

Enhanced DLP log details

Logs display more detailed records about each Data Loss Prevention incident. Details not only include the rules that triggered the incident, but also the exact template that identified the digital asset.

For details, see Data Loss Prevention Logs.

Extended non-storage device support

Device Control can now monitor Bluetooth adaptors and Wireless NICs.

For details, see the Data Protection Lists document at http://docs.trendmicro.com/en-us/enterprise/officescan.aspx.

Extended DLP channel support

Data Loss Prevention can now monitor the following:

For details, see the Data Protection Lists document at http://docs.trendmicro.com/en-us/enterprise/officescan.aspx.