Box launched Shield in private beta back in August ahead of its full launch two months later. Initially, Box Shield shipped with a handful of core functionalities, including “smart access,” which allows admins to define rules and access policies to control specific actions among employees, such as content and link sharing, and automated threat and data breach detection alerts. A few months back, Box added automated malware detection to the mix.
Now, with automated classification, Box is using machine learning to automatically scan files to detect personally identifiable information (PII) in files in real-time as they’re uploaded to the cloud, or moved between locations. This helps businesses to safeguard all their documents, including spreadsheets, PDFs, and Box Notes, ensuring that confidential or private information is categorized with the correct access and sharing permissions.
With automated file classification, Box Shield classify files based on admin-defined policies, making it easier to enforce these policies at scale and ensure adherence to the growing number of data privacy laws such as GDPR, as well as long-standing regulations such as HIPAA.
For example, Box Shield can detect and classify files that contain social security numbers, bank account details, or driver license numbers. Admins can also create custom terms to automatically classify any document that contains certain phrases such as “Confidential” or “Internal use only”.
Then Shield can enforce access controls, such as restricting downloads, or limiting the sharing of links to folders.
The launch fits into a broader trend that has seen automation infiltrate the cybersecurity sphere, however it also comes at a time when more people are working from home due to the COVID-19 crisis, leading to a greater risk of external and internal threats across businesses.
Box said that in June alone, Shield was used 8 million times to block shared link access to classified files, and prevented nearly one million classified file downloads.