McAfee unveils DLP gateway

McAfee introduced its newest data leakage prevention technology on April 24, taking the wraps off a gateway package meant to compliment its existing host-based DLP (data loss prevention) software.

Labeled as DLP Gateway, the system promises to block both unintentional and malicious attempts to expose sensitive information at the network level, providing a second layer of defense when combined with McAfee's endpoint-based host system, which was introduced in Feb. 2007.

By combining the two DLP platforms, the security company claims it can offer a more comprehensive approach to protecting data than its rivals, some of whom have hitched their products to one flavor of the tools or the other, McAfee officials said.

In order to block the most channels for potential data loss -- from mobile devices to printers -- the company is advising enterprises to employ both forms of DLP technology to eliminate potential weak points in their defenses.

The DLP sector has been tabbed by experts for significant growth over the next several years as businesses seek out new technologies for protecting against attacks and employee missteps that may allow for the theft of sensitive information.

Some companies are pursuing DLP based on fears of losing their intellectual property to hacks or disgruntled workers, while many others are hoping the tools can help them avoid situations like the network break-in at TJX Companies that led to the exposure of more than 45.6 million sensitive customer records.

McAfee has been building out its DLP offerings for the last several years both via internal development and through its Oct. 2006 acquisition of software maker Onigma for $20 million.

Due out in May, the DLP Gateway specifically promises to provide protection for computers brought into networks by outsiders, such as contractors or business partners, as well as handle data filtering for non-Windows systems, including Mac and Linux servers and mobile devices.

"A vast majority of the data leakage issue can be brought down to the traditional Windows-based desktop environment, but that doesn't cover devices like BlackBerries or smartphones -- or laptops carried by visiting users," said Kevin LeBlanc, group product marketing manager at McAfee. "Many companies are dealing with increasing numbers of contractors logging on inside their networks; they need to share information but don't own the desktop and want to prevent confidential data from walking out the door."

By deploying both network and host-based DLP, companies will create a multi-layered approach that is far more effective than either technology on its own, LeBlanc said.

McAfee is also tying to tools into its centralized ePolicy Orchestrator security and compliance management framework to pool resources with other applications.

As part of the gateway launch, McAfee also released a research report that details perceptions of the impact of data leakage incidents among corporate customers.

In the survey of 1,400 IT professionals conducted at companies with 250 employees or more in the U.S., U.K., France, Germany, and Australia, researchers found that 33 percent of respondents feel a serious data incident could put their companies out of business.