search cancel

Use Optical Character Recognition (OCR) feature with CloudSOC policies

book

Article ID: 239009

calendar_today

Updated On:

Products

CASB Securlet SAAS With DLP-CDS CASB Gateway CASB Gateway Advanced CASB Security Advanced CASB Security Premium CASB Securlet SAAS

Issue/Introduction

The OCR feature extends the CloudSOC capabilities to be able to inspect 'text' embedded in images by using Optical Character Recognition.

Environment

OCR Inspection is not enabled by default on CDS, as a first step, make sure to enable it and to choose the languages needed.

 

Enable OCR inspection:

- Login to your CMP account (CMP link)

- Navigate to the OCR section (menu or home page)

- Enable that the OCR inspection

- Select the OCR languages (up to three languages can be selected)

 

Configure a keyword policy on DLP Enforce:

- Configure a keyword-based policy on DLP Enforce

- Give it enough time to sync 

- Test the result by uploading (or downloading) an image file that contains the keyword 

 

Cause

An example for a use case:

Customer would like to inspect the data shared externally that contains a specific keyword (like confidential, or 'for internal use only' ...etc)

Resolution

Tested using a policy like this:

Then uploaded an image file that contains the keyword:

 

And it triggered a policy violation:

Attachments