๐ŸŽ New User? Get 20% off your first purchase with code NEWUSER20 ยท โšก Instant download ยท ๐Ÿ”’ Secure checkout Register Now โ†’
Menu

Categories

Security Intermediate

What is Data Loss Prevention (DLP)?

A strategy and set of tools that detect and prevent unauthorized transmission of sensitive data outside an organization.

DLP systems monitor and control data movement across networks (network DLP), on endpoints (endpoint DLP), and in cloud services (cloud DLP). They identify sensitive data (credit cards, SSNs, health records) using pattern matching, keywords, and machine learning.

Actions include blocking transmission, encrypting data, alerting administrators, and quarantining files. DLP is required by regulations including GDPR, HIPAA, and PCI DSS. Implementation requires careful policy tuning to balance security with productivity.

Related Terms

PKI (Public Key Infrastructure)
A framework of policies, hardware, and software for creating, managing, distributing, and revoking digital certificates.
Cryptographic Key Management
The practices and procedures for generating, storing, distributing, rotating, and revoking encryption keys securely.
Man-in-the-Middle Attack
An attack where the attacker secretly intercepts and potentially alters communication between two parties who believe they are communicating directly.
RBAC (Role-Based Access Control)
An access control model where permissions are assigned to roles, and users are assigned to roles rather than getting permissions directly.
Zero Trust
A security model that requires strict identity verification for every user and device, regardless of their network location.
SQL Injection
An attack where malicious SQL code is inserted into application queries through user input to access or manipulate the database.
View All Security Terms โ†’