Cisco Cisco Content Security Management Appliance M1070 Guida Utente
4-30
Cisco IronPort AsyncOS 8.0 for Security Management User Guide
Chapter 4 Using Centralized Email Security Reporting
Figure 4-13
Internal User Search Results
DLP Incident Summary Page
The Email > Reporting > DLP Incidents (DLP Incident Summary) page shows information on the
incidents of data loss prevention (DLP) policy violations occurring in outgoing mail. The Cisco IronPort
appliance uses the DLP email policies enabled in the Outgoing Mail Policies table to detect sensitive
data sent by your users. Every occurrence of an outgoing message violating a DLP policy is reported as
an incident.
incidents of data loss prevention (DLP) policy violations occurring in outgoing mail. The Cisco IronPort
appliance uses the DLP email policies enabled in the Outgoing Mail Policies table to detect sensitive
data sent by your users. Every occurrence of an outgoing message violating a DLP policy is reported as
an incident.
Using the DLP Incident Summary report, you can answer these kinds of questions:
•
What type of sensitive data is being sent by your users?
•
How severe are these DLP incidents?
•
How many of these messages are being delivered?
•
How many of these messages are being dropped?
•
Who is sending these messages?