Data Loss/Leak Prevention (DLP) is a security control that attempts to detect and prevent data exfiltration attempts from organizations. It works by scanning unencrypted data and looks for keywords and patterns that perhaps may have the potential of causing unauthorized access to data and compromise organizations.
DLP can be network or endpoint/host-based and helps organizations to proactively block data breaches. Moreover, it has the capability of deeply examining organizational data whether it is in-transit and at-rest. However, a DLP control does not have the capability of decrypting data or examining encrypted data.
the_cyberguy Answered question 25/05/2022