|
| |
|
|
DLP solution as an organization data protection tool
Drápalíková, Jitka ; Mezera Michal, Bc. MSc (referee) ; Sedlák, Petr (advisor)
The bachelor thesis deals with elaboration of data protection proposal using Data Loss Prevention technology for a particular organization. The theoretical part is focused on data problematics in company’s environment and the DLP technology itself. The work also covers the comparison of DLP products on the market, selection of the product, its scope, proposal of setting and calculation.
|
|
|
Monitoring and Analysis of Users Using DLP System
László, Peter ; Janoušek, Vladimír (referee) ; Drozd, Michal (advisor)
The purpose of this work is presenting Data Loss Prevention systems, describing each element of it and writing down advantages and disadvantages of these systems. This document contains required knowledge about filter drivers and I/O request packets. According to this knowledge it is possible to design a user application, which based on the principles of Data Loss Prevention systems is able to prevent sensitive data from leaks. Created application is a mini-filter driver, which allows tracking operations of marked files with monitoring and filtering IRP packets. This document also contains detailed desing, implementation, testing and reviewing of created program.
|
|
|
Module Extending Functionality of GDPR Solution
Janeček, Vít ; Pluskal, Jan (referee) ; Veselý, Vladimír (advisor)
The goal of this thesis is to introduced the principles of access control technologies, the General Data Protection Regulation and the software for data leakage protection. An essential part of the work is a draft and implementation of the expansion module for user device authentication including shared storage access authorization. Therefore, this module allows to verify whether a user can access shared corporate resources. It also allows to enable or disable access based on specified attributes, such as the type of the protected service or user permission. The basic verification of the module's functionality is realized through different sets of tests and a virtual environment that simulates the corporate environment. The result of the draft is a module that allows to verify access based on the device, and this module is moreover integrated into the Safetica security platform.
|
|
|
Monitoring and Analysis of Users Using DLP System
Pandoščák, Michal ; Hanáček, Petr (referee) ; Drozd, Michal (advisor)
The purpose of this masters thesis is to study issues of monitoring and analysis of users using DLP (Data Loss Prevention) system, the definition of internal and external attacks, the description of the main parts of the DLP system, managing of politic, monitoring user activities and classifying the data content. This paper explains the difference between contextual and content analysis and describes their techniques. It shows the fundamentals of network and endpoint monitoring and describes the process and users activities which may cause a data leakage. Lastly, we have developed endpoint protection agent who serves to the monitoring activities at a terminal station.
|
|
|
Web Browser Extension Providing Protection of Company Data
Dvořák, Jan ; Bednář, Martin (referee) ; Polčák, Libor (advisor)
This thesis focuses on securing company data stored in SaaS storage. In contrast to data stored on-premise, data stored in the cloud face several additional risks, be it from the outside as well as from the inside of the organization. The main risk, whose impacts we try to mitigate in this work, is an accidental data leak by one of the organization's employees. An extension for the Google Chrome web browser was designed and implemented as a solution to this issue. Implementation complications rising from transitioning to a new version of the manifest are also examined in part of this work. The thesis is concluded with the execution of experiments simulating practical data loss scenarios and a verdict on whether a web extension is an appropriate means for creating a tool providing data loss prevention capabilities.
|
|
|
Web Browser Extension Providing Protection of Company Data
Dvořák, Jan ; Bednář, Martin (referee) ; Polčák, Libor (advisor)
This thesis focuses on securing company data stored in SaaS storage. In contrast to data stored on-premise, data stored in the cloud face several additional risks, be it from the outside as well as from the inside of the organization. The main risk, whose impacts we try to mitigate in this work, is an accidental data leak by one of the organization's employees. An extension for the Google Chrome web browser was designed and implemented as a solution to this issue. Implementation complications rising from transitioning to a new version of the manifest are also examined in part of this work. The thesis is concluded with the execution of experiments simulating practical data loss scenarios and a verdict on whether a web extension is an appropriate means for creating a tool providing data loss prevention capabilities.
|
|
|
DLP solution as an organization data protection tool
Drápalíková, Jitka ; Mezera Michal, Bc. MSc (referee) ; Sedlák, Petr (advisor)
The bachelor thesis deals with elaboration of data protection proposal using Data Loss Prevention technology for a particular organization. The theoretical part is focused on data problematics in company’s environment and the DLP technology itself. The work also covers the comparison of DLP products on the market, selection of the product, its scope, proposal of setting and calculation.
|
|
|
Module Extending Functionality of GDPR Solution
Janeček, Vít ; Pluskal, Jan (referee) ; Veselý, Vladimír (advisor)
The goal of this thesis is to introduced the principles of access control technologies, the General Data Protection Regulation and the software for data leakage protection. An essential part of the work is a draft and implementation of the expansion module for user device authentication including shared storage access authorization. Therefore, this module allows to verify whether a user can access shared corporate resources. It also allows to enable or disable access based on specified attributes, such as the type of the protected service or user permission. The basic verification of the module's functionality is realized through different sets of tests and a virtual environment that simulates the corporate environment. The result of the draft is a module that allows to verify access based on the device, and this module is moreover integrated into the Safetica security platform.
|
|
|
Monitoring and Analysis of Users Using DLP System
László, Peter ; Janoušek, Vladimír (referee) ; Drozd, Michal (advisor)
The purpose of this work is presenting Data Loss Prevention systems, describing each element of it and writing down advantages and disadvantages of these systems. This document contains required knowledge about filter drivers and I/O request packets. According to this knowledge it is possible to design a user application, which based on the principles of Data Loss Prevention systems is able to prevent sensitive data from leaks. Created application is a mini-filter driver, which allows tracking operations of marked files with monitoring and filtering IRP packets. This document also contains detailed desing, implementation, testing and reviewing of created program.
|
guest ::
