Box launched Shield in private beta back in August ahead of its full launch two months later. Initially, Box Shield shipped with a handful of core functionalities, including “smart access,” which allows admins to define rules and access policies to control specific actions among employees, such as content and link sharing. And then there was automated threat and data breach detection alerts, which was followed by malware detection which launched back in April.
Now, with automated classification, Box is using machine learning to automatically scan files to detect personally identifiable information (PII) in files in real-time as they’re uploaded to the cloud, or moved between locations. This helps businesses to safeguard all their documents, including spreadsheets, PDFs, and Box Notes, ensuring that confidential or private information is categorized with the correct access and sharing permissions.
With automated file classification, Box Shield classify files based on admin-defined policies, making it easier to enforce these policies at scale and ensure adherence to the growing number of data privacy laws such as GDPR, as well as long-standing regulations such as HIPAA.
For example, Box Shield can detect and classify files that contain social security numbers, bank account details, or driver license numbers, while admins can create custom terms so that Box Shield will automatically classify any document that contains phrases such as “Confidential” or “Internal use only”. Then Shield can enforce access controls, such as download restrictions or limiting external collaboration.
This fits into a broader trend that has seen automation infiltrate the cybersecurity sphere, however it also comes at a time when more people are working from home due to the COVID-19 crisis, leading to a greater risk of external and internal threats across businesses.
Box said that in June alone, Box Shield was used 8 million times to block shared link access to classified files, and prevented nearly one million classified file downloads.