This article summarizes details regarding the smallest data set that DLP can accommodate for triggering a reaction.
McAfee DLP is designed to trigger a reaction on data that is no less than 350 characters.
This design is intended as a performance enhancement to the DLP product. McAfee DLP is designed to protect and trigger on real data, such as standard alphanumeric text. The McAfee DLP would cause a considerable loss in performance on systems if items smaller than 350 characters were constantly being scanned.
Data loss of fewer than 350 characters can occur through many other means, such as memorizing the information or writing it on a notepad. DLP focuses on more significant computer-based loss channels.
A similar reaction also occurs with tag preservation. If a tagged file is opened and saved, the tag is lost if the saved document has fewer than 350 characters.
NOTE: Because they have no minimum size, Content-based Tagging Rules are not treated in this manner.
For detailed information about DLP Endpoint rules, see the
DLP_Testing_File.zip file attached to this article.
