McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
Business HomeProducts & SolutionsData Protection
McAfee DLP Prevent

McAfee DLP Prevent

Protection against data loss through email, instant messaging, web, and other communications

“With McAfee DLP, we can tell right away if someone in the company is doing something inappropriate with our data, and then act promptly to remedy the situation.”

Jim Fallon
Security Manager, Airlines Reporting Corporation
Read Full Story
Next Steps:

Overview

McAfee DLP Prevent protects against data loss by ensuring that data only leaves the network when appropriate — whether through email, webmail, instant messenger, wikis, blogs, portals, HTTP/HTTPS, or FTP transfers. If a policy violation is detected, DLP Prevent can, at your choice, encrypt, redirect, quarantine, or even block the data transmission in question. This supports compliance with privacy regulations and reduces the likelihood of data breaches, while enabling legitimate data use.

Scan inbound/outbound network traffic — DLP Prevent delivers comprehensive scans of inbound and outbound network traffic across all ports, protocols, and content types.

Automatically identify over 300 content types — Using comprehensive data classification, DLP Prevent automatically identifies and protects more than 300 different content types (including complex computer aided design (CAD) files) in over 13 languages.

Gain visibility to security incidents — Customized views and incident reports provide summary and detailed views of security incidents and the mediation actions taken.

Features & Benefits

Trust comprehensive data protection

Protect more than 300 standard content types, including Microsoft Office documents, multimedia files, source code, design files, archives, encrypted files, built-in policies, and intellectual property, as well as sensitive information in exotic data formats through the use of customer filters.

Save time with coordinated response

Report all incidents to our centralized incident management console for access by any authorized user for follow-up, delegation, or inclusion in new or existing cases.

Classify, analyze, and address data loss

Filter and control sensitive information, and index and enforce fine-grained security policies for all content.

Integrate with web proxies and MTAs

Facilitate a seamless integration with a broad range of commercial email and web gateway products (standards-based integration via simple mail transfer protocol (SMTP) and Internet content adaptation protocol (ICAP)).

Ensure consistent policy enforcement

Establish common, enterprise-wide policies to ensure that data protection is uniformly enforced out to the network boundary.

Leverage built-in policies

Use built-in policies and rules for common regulatory requirements, including PCI, GLBA, HIPAA, SOX, personally identifiable information, patient health information, SSN, CCN, stripe data, financial information, and more. Network DLP Prevent also provides built-in policies for intellectual property assets (e.g., source code, internal memos, product documents, and pricing information).

Integrate case management and streamline remediation

Get integrated case management with configurable notification messages for senders, recipients, content owners, and system administrators. You can enable traffic enforcement through ICAP integration with ICAP-compliant web proxies for mitigating content violations over IM, FTP, HTTP, HTTPS, and webmail. You can enable mail enforcement through SMTP integration with mail transfer agent (MTA) devices.

Get detailed views and advanced reporting

Customize summary and detail views of incident logs and search results with DLP Prevent’s powerful analytics engine. You can create reports with optional trending data on demand or schedule for regular delivery. The system comes with over 20 preconfigured, customizable reports to get you started.

System Requirements

McAfee DLP Manager, McAfee DLP Monitor, McAfee DLP Discover, and McAfee DLP Prevent are now supported on the McAfee DLP 4400 appliance. The DLP 4400 appliance is an Intel-based platform with dual six core CPUs, 24 GB of RAM and 8 TB of storage in a 2U form factor. DLP hardware appliance solutions are self-contained devices. There are no minimum software or hardware system requirements or additional database installations required.

With the release of McAfee Data Loss Prevention (DLP) 9.2, McAfee DLP Manager, McAfee DLP Monitor, McAfee DLP Discover, and McAfee DLP Prevent are also available as virtual appliances. McAfee DLP virtual appliances run on VMware ESX or VMware ESXi 4.1 servers.

McAfee DLP 4400 Appliance

  • System
    • CPU: 2x Intel X5660, 12M Cache, 2.8 GHz (6 cores)
    • Memory: 24 GB P1333 DDR3
    • Hard Drives: 12 x 1 TB 7,200 rpm 3.5" SATA drives (8 TB usable storage)
    • Network Interfaces: Intel Dual Copper 1 Gb Ethernet I/O Module
    • RAID Controller: Intel RS2MB044
  • Power
    • 2 x 760W hot-swap Power Supply Modules
  • Dimensions
    • 17.57"W x 30.79"D x 3.43"H
    • Form factor: 2RU
  • Weight
    • 67 lbs.
  • Temperature
    • Operating temperature: 10°–35° C/50°–95° F
    • Humidity range: 8%–90%, non-condensing
  • Compliance
    • NRTL Certification (US/Canada)CB Certification (International)
    • CE Declaration of Conformity (CENELEC Europe)
    • FCC/ICES-003 Class A Attestation (USA/Canada)
    • USA-UL
    • VCCI Certification (Japan)
    • C-Tick Declaration of Conformity (Australia)
    • MED Declaration of Conformity (New Zealand)
    • BSMI Certification (Taiwan)
    • GOST R Certification / Certification (Russia)
    • CC Certification (Korea)
    • IRAM Certification (Argentina)
    • Ecology Declaration (International)
    • China RoHS Environmental Friendly Use Period
    • Packaging & Product Recycling Marks
    • SABS (South Africa)
    • NOM/NYCE (Mexico)
    • CCC Certification (China)
    • CC EAL 2+
    • FIPS-compliant encryption algorithms
    • Security Technical Implementations Guide (STIG)

Virtual Appliance Minimum Hardware Requirements

  • System
    • CPU: Intel Quad Core
    • Memory: 8 GB RAM
    • Hard Drive(s):
      • Drive 1: 128 GB for VM software
      • Drive 2: 640 GB for DLP virtual image
    • Network Ports:
      • 2 ports for DLP Monitor application
      • 1 port for DLP Prevent, DLP Manager, or DLP Discover applications
    • BIOS: Enable VT thread

System throughput: Up to 200 Mbps of full content analysis, indexing, and storage throughput per Network DLP Prevent appliance is available. For networks with higher throughput requirements, you can use multiple devices in a load-balanced configuration.

Network integration: DLP Prevent integrates passively into the network using either a Switched Port Analyzer (SPAN) port or a physically inline network tap (optional). It integrates into the network as an off-path appliance that is active within the data path using Simple Mail Transfer Protocol (SMTP)-compliant mail transfer agents (MTAs) and Internet content adaptation protocol (ICAP)-compliant web proxies.

Protocols supported: DLP Prevent supports HTTP, HTTPS, FTP, and instant messaging (IM) protocols via the ICAP to an ICAP-compliant proxy. Refer to your proxy vendor for protocols supported by your proxy. DLP Prevent also supports SMTP via integration with MTAs.

Legacy System Requirements

The Network DLP 1650 and Network DLP 3650 appliances have been discontinued. In accordance with McAfee’s End of Life policy, they are being supported until October 2016.

McAfee Network DLP 1650 Appliance

  • System
    • Memory: 16 GB
    • Fans: 5 cooling fans
    • Datastore capacity: 500 GB
    • Drive bays: 4
    • Disk capacity: 500 GB
    • Disk technology: SATA2
    • Optional expansion cards: External storage interconnection card
    • Network interfaces: Two 10/100/1000 copper network interface
    • RAID level: RAID-1
  • Power
    • Redundant hot-swappable 650-W AC-DC power supply, 100- to 240-V AC, 50–60 hertz
  • Dimensions
    • 17 1/4"W x 27 3/4"D x 1 3/4"H
    • Form factor: 1RU
  • Weight
    • 39 lbs.
  • Temperature
    • Operating temperature: 10°–35° C/50°–95° F
    • Humidity range: 8%–90%, non-condensing
  • Compliance
    • USA-UL
    • Canada-CUL
    • Germany-TÜV
    • EN 60950
    • IEC 60950
    • CB report
    • CCC certification

McAfee Network DLP 3650 Appliance

  • System
    • Memory: 16 GB
    • Fans: 5 cooling fans/redundant rear exhaust fans
    • Datastore capacity: 6 TB
    • Drive bays: 16
    • Disk capacity: 500 GB
    • Disk technology: SATA2
    • Optional expansion cards: External storage interconnection card
    • Network Interfaces: Two 10/100/1000 copper network interface
    • RAID levels: RAID-1 and RAID-5
  • Power
    • Redundant hot-swappable 800-W AC-DC power supply, 100- to 240-V AC, 50–60 hertz
  • Dimensions
    • 17 1/4"W x 25 1/2"D x 5 1/4"H
    • Form factor: 3RU
  • Weight
    • 72 lbs.
  • Temperature
    • Operating temperature: 10°–35° C/50°–95° F
    • Humidity Range: 8%-90%, non-condensing
  • Compliance
    • USA-UL
    • Canada-CUL
    • Germany-TÜV
    • EN 60950
    • IEC 60950
    • CB report
    • CCC certification

Resources

Data Sheets

McAfee DLP Prevent

For a technical summary on the McAfee product listed above, please view the product data sheet.

Community

Blogs

  • The Perils of Consumer Cloud Services
    Leon Erlanger - February 12, 2013
    There’s been a lot of talk lately about the risks and benefits of personal mobile devices in the workplace, a trend called BYOD (bring your own device). The dangers of combining personal and corporate applications and information on a single connected device are well known. However, a less discussed byproduct of mobility and personal devices Read more...
  • Intelligent DLP with End-user Classification
    Cindy Chen - January 07, 2013
    One of the biggest challenges for Data Protection solution is identifying sensitive data.  Today, organizations generate various types of sensitive data, ranging from regulated data such as PCI to unstructured data such as product designs.  Not all sensitive data can be identified and protected via regular expressions and keywords.  By supplementing End-user Classification to the Read more...
  • Looking into the Cyber Threats Crystal Ball: McAfee Threats Predictions Report
    Pat Calhoun - December 27, 2012
    Proactive and preemptive.  That’s the caliber of protection we are working toward integrating into all of our network security products.  Because without proactive and preemptive protection, online security will never be completely secure.  Thankfully for all of us, McAfee Labs knows this is the key too.  That’s why, every year McAfee Labs publishes its Threat Read more...
  • Email Equals Data – Leading Research Firm, Forrester, Gets It
    Pat Calhoun - December 19, 2012
    When you spend your days talking about network security to just about anyone who will listen, you learn a lot about what keeps them up at night.  The key security and IT decision-makers I’m lucky to speak with really bring to life the trends that are uncovered every quarter in the McAfee Labs Threats Report.  Read more...
  • Old Technology Habits in a New Business Environment
    David Bull - November 08, 2012
    The line between personal and business technology is blurred more every day, and this means new challenges for every business. It is easy to see the trend in action – many employees use their personally owned smartphones, sites like Facebook, Dropbox, or even web-based mail clients such as Gmail now in a business environment. These Read more...
View All
Singapore - English