DLP Software Blade
Overview
Check Point revolutionizes DLP by combining technology and processes to move businesses from passive detection to active Data Loss Prevention. Innovative MultiSpect™ data classification combines user, content and process information to make accurate decisions, while new UserCheck™ technology empowers users to remediate incidents in real time. Check Point’s self-educating network-based DLP solution frees IT/security personnel from incident handling and educates users on proper data handling policies - protecting sensitive corporate information from both intentional and unintentional loss.
Key Benefits
- Prevents data loss of critical business information
New UserCheck technology empowers users to remediate incidents in real time - Combines technology and processes to make DLP work
Innovative MultiSpect data classification engine combines users, content and process that delivers unrivaled accuracy - Easy deployment for immediate data loss prevention
Protect sensitive data from day one with pre-configured policies and the broadest support for file formats and data types
Features
- Check Point UserCheck
- Check Point MultiSpect
- Network-wide Protection Coverage
- Central Policy Management
- Rapid and Flexible Deployment
Check Point UserCheck™
Check Point UserCheck empowers users to remediate incidents in real time. This innovative technology alerts users of suspected breaches, allowing for instant remediation, and allows quick authorization of legitimate communications.
UserCheck empowers users to self-administer incident handling, with options to send, discard or review the issue, improving security by raising awareness of data use policies. Real-time notification based either on a pop-up from a thin agent or via a dedicated email sent to end user (no need to install agent). Organizations benefit in several ways:
- Full prevention – enables a practical move from detection to prevention
- Self-educating system – doesn’t require IT/security personnel in incident handling while educating the users on proper data sharing policies
Check Point MultiSpect™
Check Point’s innovative MultiSpect data classification engine combines users, content and process into accurate decisions. Check Point DLP delivers exceptionally high accuracy in identifying sensitive data including personally identifiable information (PII), compliance-related data (HIPAA, SOX, PCI data, etc.), and confidential business data. This is achieved through the MultiSpect technology, a strong 3-tier inspection engine:
- Multi-parameter data classification and correlation - Multi-protocol inspection and enforcement – inspects content flows and enforces policies in the most widely used TCP protocols including SMTP, FTP, HTTP and webmail, pattern matching, and file classification for identifying content types regardless of the extension applied to the file or compression.
- Recognize and protect sensitive forms - file/ form matching (based on predefined templates)
- Identify unconventional business communication behavior - Out-of-the-box best practice policies
In addition, an open scripting language is available for creating custom data types. This unique flexibility provides virtually unlimited support for protecting sensitive data.
Network-wide Protection Coverage
Check Point’s DLP solution is based on a new in-line network-based Software Blade which runs on any existing Check Point gateway. The Check Point DLP Software Blade is an advanced data loss prevention solution for data transmitted over networks with wide coverage of traffic transport types including deep application awareness protecting data in-motion including (SMTP, HTTP, FTP). DLP policies are created to define what to prevent and how to prevent, per policy, per network segment, per gateway and per user-group.
Central Policy Management
The DLP blade is managed centrally with Check Point Security Management™ through a user-friendly interface. Centralized management offers unmatched leverage and control of security policies, and enables organizations to use a single repository for user and group definitions, network objects, access rights, and security policies across their entire security infrastructure. Unified access policies are enforced automatically throughout the distributed environment, empowering them to securely provision access from anywhere.
Unified policy deployment across multiple gateways controls enforcement actions per policy; i.e. Detect (log only), or Quarantine (self-incident handling). Policy management includes the following features and options:
- Selection of data type(s) and user group(s) –also using Active Directory
- Enable exceptions -allowed users
- Traffic direction - enforce on outbound or inter-departmental traffic
- Pre-defined policies and content data types
- Incremental exposure of specific policies per different user groups
- Integrated Logging and Event correlation
- Customization of internal quarantine
- Granular protection control - easy-to-use protection profiles allow administrators to define signature and protection activation rules that match the security needs of your network assets
- Predefined default and recommended profiles – provide immediate and easy use out-of-the-box with profiles tuned to optimize security or performance
Event Management
Separating the needle from the haystack, SmartEvent for DLP allows you to monitor and report only what is important. Event management includes the following features and options:
- Real-time and history graphing and reporting of DLP events
- Easy incident correlation
- Graphical incident timeline
- Easily configured custom views
- Event / incident management workflow
For more details, see SmartEvent Blade
Rapid and Flexible Deployment
Organizations of any size can be protected from day one with pre-configured templates. A wide range of built-in policies and rules are included for common requirements, including regulatory compliance, intellectual property, and acceptable use.
The Check Point DLP Software Blade can be installed on any Check Point Security Gateway ( based on Check Point appliances or open server platforms). Deploy easily and rapidly on existing Check Point Security Gateways saving time and reducing costs by leveraging existing security infrastructure. In addition, a full range of powerful and highly scalable DLP-1 appliances are available to align with any network security requirements.
Specifications
DLP-1 2571 |
DLP-1 9571 |
|
|---|---|---|
| Software Version | R71 | R71 |
Performance |
||
| Number of Users | 1000 | 5000 |
| Messages/Hour | 70,000 | 350,000 |
| Throughput | 700 Mbps | 2.5 Gbps |
Interfaces
|
||
| Built-in Interfaces | 6 Copper 1 GbE | 10 Copper 1 GbE |
| Optional interfaces | 4 port built-in bypass card (optional) |
LOM Modular 4-Port, Copper, Bypass Card |
Storage
|
||
| Storage size | 500GB | 2x1TB (Mirrored – RAID 1) |
Physical Specifications
|
||
| Enclosure | 1U | 2U |
| Dimensions (standard) |
17.4 x 15 x 1.73 in. | 17 x 20 x 3.46 in. |
| Dimensions (metric) |
443 x 381 x 44mm | 431 x 509.5 x 88mm |
| Weight | 6.5kg (14.3 lbs) | 16.5 kg (36.3 lbs) |
Power |
||
| Dual, hot-swappable power supplies | No | Yes |
| Power Input | 100 ~ 240V; 50 ~ 60Hz | |
| Power Supply Spec (Max) | 250W | 400W |
| Power Consumption (Max) | 77.5W | 200.7W |
| Operating environment range | Temperature: 5° to 40° C, Humidity: 10%-85% non-condensing, Altitude: 2,500m | |
| Compliance | UL 60950; FCC Part 15, Subpart B, Class A; EN 55024; EN 55022; VCCI V-3AS/NZS 3548:1995; CNS 13438 Class A (test passed; country approval pending); KN22KN61000-4 Series, TTA; IC-950; ROHS | |
Software Technical Specifications
DLP Software Blade is a software solution based on the Software Blade architecture. For deployment on open servers, it is tested for compatibility with a wide variety of currently shipping and pre-release hardware platforms. Please see the Hardware Compatibility List.
| Minimum hardware requirements for installingDLP Software Blade | ||
|---|---|---|
| Open server recommended requirements | < 1000 users | < 5000 users |
| CPU cores | 2 | 8 |
| RAM size | 4GB | 4GB |
| Storage size | 250G | 500G |
| NICs | 2 | 2 |
Technical Specifications
Support and Warranty
Check Point offers a range of support programs for customers using our appliances covering both software and hardware issues.
Check Point offers support online, by phone and onsite directly or via its network of partners. Opening a ticket online with Check Point Support via Check Point User Center.
Support Programs for Appliances
Check Point's Appliance Support programs provide technical support, software updates and upgrades, and the replacement of faulty hardware.
Please visit our Support Programs for more information or Compare Programs for a summary of features.
Hardware Warranty
Check Point warrants that hardware components of its appliances shall be free from material defects and will function according to the documentation provided for a period of one year from the date of appliance activation by Check Point. If the unit has a hardware failure during this warranty period, customer can begin a RMA process. Please visit Hardware Warranty for more information.
Check Point Enterprise Support Lifecycle Policy
Check Point Enterprise Support Lifecycle Policy outlines the product support guidelines for a product's lifecycle. The objective of this policy is to standardize and normalize product lifecycle practices, thereby enabling Check Point customers to make more informed purchase, support and upgrade decisions.
All Check Point products (except third-party products sold by Check Point) are covered by this policy. Customers who are operating Check Point products under a valid Support & Maintenance Agreement are entitled to the benefits associated with this policy.
Next Steps
- Find a Partner
- Call US sales: 1-866-488-6691
- Contact Us Online
Resources
Check Point Software Blade Architecture Brochure- Software Blades Demo
- Software Blade Architecture White Paper
-
WATCH NOW-Check Point makes DLP work
Check Point DLP Software Blade combines technology and processes to stop data loss.
Software Blades
Security Gateway Software Blades