Hi there,
Here's some information that may assist with your questions.
- All sensitive incident data captured by the Symantec Data Loss
Prevention detection servers is encrypted using 128-bit AES symmetric
keys. This encryption occurs at the time of capture, is securely
transmitted to the Enforce Platform database, and is stored in the same
encrypted format.
- All indexed data uploaded into the Enforce Platform to create EDM/IDM
profiles is protected with a one-way hash. As previously discussed,
secure EDM hashes can also be created remotely within the secure data
storage network using the External EDM Indexer and can then be
transferred to the Enforce Platform.
- All communication channels between detection servers and the Enforce
Platform in both directions are encrypted with SSL (RSA-1024-bit keys).
These SSL communications use server- and client-side certificates to
perform mutual authentication.
- The encryption keys are rotated on a configurable time period (30-day
default) and are securely updated from the Enforce Platform to the
detection servers via the SSL connection.
Regards,
Cherian Thomas
Cnslt Info Security Risk