In association with heise online

03 May 2010, 08:57

OpenDLP aims to detect potential data loss

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

Zoom The results of an OpenDLP scan
Source: OpenDLP project
A new open source project, OpenDLP, aims to detect data loss in organisations by automated scanning for potentially confidential information. The system consists of a management server, written in Perl, and an agent, written in C, which is deployed to users' systems to carry out the scanning. The agent uses a library of regular expressions to scan the user's local storage for patterns which represent sensitive information. The agents have additional checks for potential credit card numbers to reduce false positives, white/blacklists to prevent some files being scanned and the ability to filter scanned files based on file extensions. Agents are currently only available to run on Windows 2000 or later.

The agents report their findings back to the server over an SSL channel. OpenDLP is able to automatically deploy and start agents over Netbios/SMB, using appropriate Windows domain credentials. The scan results are exportable as XML for further processing. Future plans for OpenDLP include adding zip support to allow it to read Office 2007 and OpenOffice files, database scanning abilities, better logging and more powerful false positive prevention. OpenDLP 0.1 is released under the GPLv3 and can be downloaded from the project's page.


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit