I was talking to yet another contact today who reinforced that almost no one is sniffing SSL traffic when they deploy DLP.

That means…

  • No monitoring of most major webmail providers.
  • No monitoring of many social networks.
  • No monitoring of Dropbox or other cloud storage services.
  • No monitoring of connections to any site that requires a login.

Don’t waste your money. If you aren’t going to use DLP to monitor SSL/TLS encrypted web traffic you might as well stick to email, endpoint, or other channels. I’m sure no one will siphon off sensitive stuff to Gmail. Nope, never happens. Especially not after you block USB drives.