How to detect PGP encrypted attachments

book

Article ID: 160226

calendar_today

Updated On:

Products

Data Loss Prevention Enforce

Issue/Introduction

Only PGP encrypted emails are getting detected, not attachments. How to set up policy to detect pgp encrypted attachments.

Resolution

Relevant versions:  7.x and up

PGP v.7

Vontu includes a ready-made policy template for PGP v.7 encrypted data.  To set up this policy:

  1. Within the UI, click on Policies -> Add Policy -> Add a Policy from Template. Click Next.
  2. Under the section Confidential or Classified Data Protection, select Encrypted Data and click Next.
  3. Select a name for your policy, fill in the description field, and associate this policy with a Policy Group.
  4. Make any modifications as needed. 
  5. Add Exceptions or Response Rules as needed. 
  6. Click Save.

PGP v.8

Vontu does not recognize a PGP v.8 attachment by signature, but can recognize it by extension. To set up a policy to accomplish this, follow these steps:

  1. Within the UI, click on Policies -> Add Policy -> Add a Blank Policy. Click Next.
  2. Select a name for your policy, fill in the description field, and associate this policy with a Policy Group.
  3. Click Add Rule.
  4. Under the Section File Properties, select "Message Attachment or File Name Match". Click Next.
  5. Under Conditions, enter in the File Name field " *.pgp,*.aex "
  6. Enter a rule name, and click OK.

Powered by Wolken Software