Using classifications, rules, and policies to protect sensitive content

All McAfee DLP products use a similar workflow for creating policies. A policy consists of rules, which are grouped into rule sets. Rules use classifications and definitions to specify what McAfee DLP detects. Rule reactions determine the action to take when data matches the rule.

Use this workflow for creating policies and applying policies.

1 Definitions — Used to create classifications and rules. The two types of definitions are created in their respective consoles.
2

Create a classification — Data protection rules require classifications and definitions in their configuration to specify what the appliance detects.

  • Registered documents — It gives administrators another way to define sensitive information, to protect it from being distributed in unauthorized ways. Create the registered documents with McAfee DLP Discover registration scans (automatic registration) for McAfee DLP Discover, McAfee DLP Prevent, and McAfee DLP Monitor.
  • Classification criteria — Can be used by all McAfee DLP products except Device Control. Create classification criteria from data and file definitions.

3

Create a rule set and Create a rule — Rule sets combine multiple data protection rules to protect data. Create a rule and its actions and add it to a rule set.

4

Assign rule sets to policies — To assign rule sets to DLP policies, activate rule sets and then assign the rule sets to DLP policies.

5

Assign a policy to an appliance — Assign and apply the policies to the appliances from System Tree using the Wake Up Agents option.