McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
Business HomeProducts & SolutionsData Protection
McAfee DLP Prevent

McAfee DLP Prevent

Protection against data loss through email, instant messaging, web, and other communications

“With McAfee DLP, we can tell right away if someone in the company is doing something inappropriate with our data, and then act promptly to remedy the situation.”

Jim Fallon
Security Manager, Airlines Reporting Corporation
Read Full Story
Next Steps:

Overview

McAfee DLP Prevent protects against data loss by ensuring that data only leaves the network when appropriate — whether through email, webmail, instant messenger, wikis, blogs, portals, HTTP/HTTPS, or FTP transfers. If a policy violation is detected, DLP Prevent can, at your choice, encrypt, redirect, quarantine, or even block the data transmission in question. This supports compliance with privacy regulations and reduces the likelihood of data breaches, while enabling legitimate data use.

Scan inbound/outbound network traffic — DLP Prevent delivers comprehensive scans of inbound and outbound network traffic across all ports, protocols, and content types.

Automatically identify over 300 content types — Using comprehensive data classification, DLP Prevent automatically identifies and protects more than 300 different content types (including complex computer aided design (CAD) files) in over 13 languages.

Gain visibility to security incidents — Customized views and incident reports provide summary and detailed views of security incidents and the mediation actions taken.

Features & Benefits

Trust comprehensive data protection

Protect more than 300 standard content types, including Microsoft Office documents, multimedia files, source code, design files, archives, encrypted files, built-in policies, and intellectual property, as well as sensitive information in exotic data formats through the use of customer filters.

Save time with coordinated response

Report all incidents to our centralized incident management console for access by any authorized user for follow-up, delegation, or inclusion in new or existing cases.

Classify, analyze, and address data loss

Filter and control sensitive information, and index and enforce fine-grained security policies for all content.

Integrate with web proxies and MTAs

Facilitate a seamless integration with a broad range of commercial email and web gateway products (standards-based integration via simple mail transfer protocol (SMTP) and Internet content adaptation protocol (ICAP)).

Ensure consistent policy enforcement

Establish common, enterprise-wide policies to ensure that data protection is uniformly enforced out to the network boundary.

Leverage built-in policies

Use built-in policies and rules for common regulatory requirements, including PCI, GLBA, HIPAA, SOX, personally identifiable information, patient health information, SSN, CCN, stripe data, financial information, and more. Network DLP Prevent also provides built-in policies for intellectual property assets (e.g., source code, internal memos, product documents, and pricing information).

Integrate case management and streamline remediation

Get integrated case management with configurable notification messages for senders, recipients, content owners, and system administrators. You can enable traffic enforcement through ICAP integration with ICAP-compliant web proxies for mitigating content violations over IM, FTP, HTTP, HTTPS, and webmail. You can enable mail enforcement through SMTP integration with mail transfer agent (MTA) devices.

Get detailed views and advanced reporting

Customize summary and detail views of incident logs and search results with DLP Prevent’s powerful analytics engine. You can create reports with optional trending data on demand or schedule for regular delivery. The system comes with over 20 preconfigured, customizable reports to get you started.

System Requirements

McAfee DLP Manager, McAfee DLP Monitor, McAfee DLP Discover, and McAfee DLP Prevent are now supported on the McAfee DLP 4400 appliance. The DLP 4400 appliance is an Intel-based platform with dual six core CPUs, 24 GB of RAM and 8 TB of storage in a 2U form factor. DLP hardware appliance solutions are self-contained devices. There are no minimum software or hardware system requirements or additional database installations required.

With the release of McAfee Data Loss Prevention (DLP) 9.2, McAfee DLP Manager, McAfee DLP Monitor, McAfee DLP Discover, and McAfee DLP Prevent are also available as virtual appliances. McAfee DLP virtual appliances run on VMware ESX or VMware ESXi 4.1 servers.

McAfee DLP 4400 Appliance

  • System
    • CPU: 2x Intel X5660, 12M Cache, 2.8 GHz (6 cores)
    • Memory: 24 GB P1333 DDR3
    • Hard Drives: 12 x 1 TB 7,200 rpm 3.5" SATA drives (8 TB usable storage)
    • Network Interfaces: Intel Dual Copper 1 Gb Ethernet I/O Module
    • RAID Controller: Intel RS2MB044
  • Power
    • 2 x 760W hot-swap Power Supply Modules
  • Dimensions
    • 17.57"W x 30.79"D x 3.43"H
    • Form factor: 2RU
  • Weight
    • 67 lbs.
  • Temperature
    • Operating temperature: 10°–35° C/50°–95° F
    • Humidity range: 8%–90%, non-condensing
  • Compliance
    • NRTL Certification (US/Canada)CB Certification (International)
    • CE Declaration of Conformity (CENELEC Europe)
    • FCC/ICES-003 Class A Attestation (USA/Canada)
    • USA-UL
    • VCCI Certification (Japan)
    • C-Tick Declaration of Conformity (Australia)
    • MED Declaration of Conformity (New Zealand)
    • BSMI Certification (Taiwan)
    • GOST R Certification / Certification (Russia)
    • CC Certification (Korea)
    • IRAM Certification (Argentina)
    • Ecology Declaration (International)
    • China RoHS Environmental Friendly Use Period
    • Packaging & Product Recycling Marks
    • SABS (South Africa)
    • NOM/NYCE (Mexico)
    • CCC Certification (China)
    • CC EAL 2+
    • FIPS-compliant encryption algorithms
    • Security Technical Implementations Guide (STIG)

Virtual Appliance Minimum Hardware Requirements

  • System
    • CPU: Intel Quad Core
    • Memory: 8 GB RAM
    • Hard Drive(s):
      • Drive 1: 128 GB for VM software
      • Drive 2: 640 GB for DLP virtual image
    • Network Ports:
      • 2 ports for DLP Monitor application
      • 1 port for DLP Prevent, DLP Manager, or DLP Discover applications
    • BIOS: Enable VT thread

System throughput: Up to 200 Mbps of full content analysis, indexing, and storage throughput per Network DLP Prevent appliance is available. For networks with higher throughput requirements, you can use multiple devices in a load-balanced configuration.

Network integration: DLP Prevent integrates passively into the network using either a Switched Port Analyzer (SPAN) port or a physically inline network tap (optional). It integrates into the network as an off-path appliance that is active within the data path using Simple Mail Transfer Protocol (SMTP)-compliant mail transfer agents (MTAs) and Internet content adaptation protocol (ICAP)-compliant web proxies.

Protocols supported: DLP Prevent supports HTTP, HTTPS, FTP, and instant messaging (IM) protocols via the ICAP to an ICAP-compliant proxy. Refer to your proxy vendor for protocols supported by your proxy. DLP Prevent also supports SMTP via integration with MTAs.

Legacy System Requirements

The Network DLP 1650 and Network DLP 3650 appliances have been discontinued. In accordance with McAfee’s End of Life policy, they are being supported until October 2016.

McAfee Network DLP 1650 Appliance

  • System
    • Memory: 16 GB
    • Fans: 5 cooling fans
    • Datastore capacity: 500 GB
    • Drive bays: 4
    • Disk capacity: 500 GB
    • Disk technology: SATA2
    • Optional expansion cards: External storage interconnection card
    • Network interfaces: Two 10/100/1000 copper network interface
    • RAID level: RAID-1
  • Power
    • Redundant hot-swappable 650-W AC-DC power supply, 100- to 240-V AC, 50–60 hertz
  • Dimensions
    • 17 1/4"W x 27 3/4"D x 1 3/4"H
    • Form factor: 1RU
  • Weight
    • 39 lbs.
  • Temperature
    • Operating temperature: 10°–35° C/50°–95° F
    • Humidity range: 8%–90%, non-condensing
  • Compliance
    • USA-UL
    • Canada-CUL
    • Germany-TÜV
    • EN 60950
    • IEC 60950
    • CB report
    • CCC certification

McAfee Network DLP 3650 Appliance

  • System
    • Memory: 16 GB
    • Fans: 5 cooling fans/redundant rear exhaust fans
    • Datastore capacity: 6 TB
    • Drive bays: 16
    • Disk capacity: 500 GB
    • Disk technology: SATA2
    • Optional expansion cards: External storage interconnection card
    • Network Interfaces: Two 10/100/1000 copper network interface
    • RAID levels: RAID-1 and RAID-5
  • Power
    • Redundant hot-swappable 800-W AC-DC power supply, 100- to 240-V AC, 50–60 hertz
  • Dimensions
    • 17 1/4"W x 25 1/2"D x 5 1/4"H
    • Form factor: 3RU
  • Weight
    • 72 lbs.
  • Temperature
    • Operating temperature: 10°–35° C/50°–95° F
    • Humidity Range: 8%-90%, non-condensing
  • Compliance
    • USA-UL
    • Canada-CUL
    • Germany-TÜV
    • EN 60950
    • IEC 60950
    • CB report
    • CCC certification

Resources

Data Sheets

McAfee DLP Prevent

For a technical summary on the McAfee product listed above, please view the product data sheet.

Community

Blogs

  • The Big Picture: Taking a Holistic Approach to Email Security
    Tim Roddy - May 22, 2012
    Email is the most common form of communication in business today. Every IT manger and CIO knows they need to block spam and viruses from entering their network via email – a real no-brainer these days. We even have world-class products and services to remove unwanted email at a truly impressive catch rate of well Read more...
  • API Security: What You Need to Know
    Tim Roddy - May 09, 2012
    Ever wonder how some of your favorite apps work together seamlessly, integrating key data points across platforms? How about the financial information you just pulled from a cloud-based CRM through your company’s ERP portal? The answer is the near invisible Application Programming Interface, or API. These pieces of finely tuned code silently make the digital Read more...
  • Collaborative File Sharing: A Secure Lifecycle
    Tim Roddy - April 25, 2012
    You want to use cloud services, and you want to do so securely. The notion of secure cloud computing has seemed like a pipe dream in recent history, with most believing it just isn’t possible to put data in the cloud with confidence. The truth is, many of these services have matured, and so have Read more...
  • Protecting the Data You Don’t Know About
    Cindy Chen - March 01, 2012
    Many customers have come to me and said “I understand the importance of data loss prevention (DLP) for my organization; but where do I start?”   Not only does data in enterprises double every 18 months, organizations don’t always know where all their data resides, who use it and how it is being used.   With most Read more...
  • Getting Value from Your DLP Investment
    Archive - February 09, 2012
    People can sometimes feel overwhelmed when they think about deploying data loss prevention (DLP) at their organization. Some common concerns I hear from prospects are: First I want to classify my data.  How can I do that? DLP has many components.  Where do I start? I have lots of data – some sensitive, some not. Read more...
View All
Hong Kong - English