Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

Do we need data-loss prevention for printers and copiers?

By now, the idea of using data-loss prevention (DLP) technologies to detect and block unauthorized transit of sensitive information across a network at host and gateway points is well accepted. As applied to peripherals such as printers and copiers, the idea is quite novel. But Canon, a longtime maker of printer-fax-copying machines, says DLP can and should be applied to this, too.

"There are nefarious folks out there," says Dennis Amorosano, senior director of Canon solutions marketing for Canon U.S.A., which built an optional DLP and audit system for its multi-function peripherals (MFP). "[And many customers] still don't look at printers and multi-function devices as part of their security strategy."

Canon addressed this issue in large part because a major customer, a large Japanese manufacturing firm, found someone had used one of its Canon MFPs to copy upcoming product plans and simply walk out the door with them, leading to a significant information breach.

BACKGROUND: VMware preparing data-loss prevention features for vShield

YEAR IN REVIEW: 2011's biggest security snafus

Canon's Secure Audit Manager is a software-based security system that can be used with the company's MFPs to track all activities related to document copying, printing, faxing and scanning. It can also be used to block thefts or alert a security manager to potential problems based on specific keywords.

"It's also used for audit. We're keeping a record of the actual physical document processed by the device," says Amorosano.

This allows the security manager to trace a specific document imaging process back to a person, because the system can also require users to authenticate to use a Canon MFP. Two-factor authentication cards can be used with Canon Secure Audit Manager, and policies can be associated with Active Directory and linked into a workflow system.

Amorosano acknowledges that aside from larger companies such as the Japanese manufacturer that inspired the creation of the Canon Secure Audit Manager several months ago, few customers are yet setting up DLP for their Canon printer-fax-copy combo units.

Secure Audit Manager goes for about $30,000, which includes costs related to the need for storage. Note that Secure Audit Manager exists as a stand-alone DLP system that isn't tied into other types of enterprise DLP products.

Read more about wide area network in Network World's Wide Area Network section.

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: Canon, DLP, etwork, LAN, LP, VMware
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: Canon, Canon USA, data-loss prevention, DLP security, security, VMware
Latest Blog Posts
Whitepapers
  • Data Center Physical Infrastructure: Optimising Business Value
    To stay competitive in today’s rapidly changing business world, companies must update the way they view the value of their investment in data center physical infrastructure (DCPI). No longer are simply availability and upfront cost sufficient to make adequate business decisions. Agility, or business flexibility, and low total cost of ownership have become equally important to companies that will succeed in a changing global marketplace.
    Learn more »
  • Advanced Malware Exposed - How advanced malware, zero-day and targeted APT attacks are evading today's network defences
    This handbook shines a light on the dark corners of advanced malware, both to educate as well as to spark renewed efforts against these stealthy and persistent threats. By understanding the tools being used by criminals, we can better defend our nations, our critical infrastructures and our citizens. It is certainly my hope that this book will provide readers with a new understanding of the rapidly developing cyber threat landscape and practical insights into how they can protect their data and computing infrastructures. - Robert F. Lentz, President and CEO, Cyber Security Strategies, LLC
    Learn more »
  • Best Practices for Oracle License Management: Optimise Usage and Minimise Audit Liability
    With Oracle audits on the rise, organisations that can best align license agreements with actual database and option usage can reduce their financial risk and maximise the value of their Oracle investments. The goal is to “right-size” Oracle across the enterprise and gain control over the entire license management process – from accurate needs projections and licensing negotiations, to deployments and audit preparation. Read on.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.