VM-Series and Panorama Plugins Release Notes
    : Features Introduced in the Enterprise Data Loss Prevention (DLP) Cloud Service
    Focus
    Download PDF
    Focus
    1. Home
    2. VM-Series and Panorama Plugins Release Notes
    3. Panorama Plugin for Enterprise Data Loss Prevention
    4. Features Introduced in the Enterprise Data Loss Prevention (DLP) Cloud Service
    Download PDF

    VM-Series and Panorama Plugins Release Notes

    Features Introduced in the Enterprise Data Loss Prevention (DLP) Cloud Service

    Table of Contents

    Features Introduced in the Enterprise Data Loss Prevention (DLP) Cloud Service

    Here’s what’s new in Enterprise data loss prevention (DLP) cloud service.

    March 2024

    New Features
    Data Dictionaries
    A data dictionary is a collection of one or more proximity keywords or phrases that you want to detect and prevent exfilitration. Data dictionaries can now be added as a match criteria alongside the other supported match criteria in advanced and nested data profiles to increase Enterprise DLP detection accuracy.
    Report False Positive Detections
    Report false positive detections to
    to improve
    detection accuracy for yourself and other
    users. False positive detections are reported against the DLP Incident where the false positive detection occurred.

    January 2024

    New Features
    Support for Cloud Services Server in France
    Enterprise DLP users can edit the Cloud Content Settings to add a Fully Qualified Domain Name (FQDN) for the Cloud Services servers in France to scan Enterprise DLP data.

    December 2023

    New Features
    Gmail Support for Email DLP
    Email DLP now supports Gmail for prevention sensitive data exfiltration contained in outbound emails using AI powered Enterprise DLP.
    Data Risk
    Data Risk provides you deep insights into the data security risk for your organization with contextual recommendations to help improve your security posture.
    Cloud Identity Engine Integration with Enterprise DLP
    Cloud Identity Engine (CIE) integration with Enterprise DLP allows Enterprise DLP Incidents to display additional
    User
     information if CIE is active on your Strata Cloud Manager tenant.

    November 2023

    New Features
    Trainable Classifiers Support for Custom Document Types
    Enterprise DLP Custom Document Types now supports uploads of custom documents using Trainable Classifiers.
    Deprecation of Predefined ML-Based Data Patterns
    The following predefined ML-based data patterns are deprecated and are now predefined custom document types.
    • Bank - Bankruptcy Filings
    • Bank - Statements
    • Financial - Form 1040
    • Financial - Form 1099
    • Financial - Form 1120
    • Financial - Form W-2
    • Financial - Form W-9
    • Financial - Invoice
    • Financial - Paystubs
    • Legal - Business Agreements
    • Legal - Lawsuits
    • Legal - Merger and acquisition
    • Legal - Patent Filings
    You must migrate all data profiles impacted by the data pattern deprecation.

    October 2023

    New Features
    New Supported Regions for Email DLP
    Email DLP now supports the following new region-specific endpoints for inspection, verdict rendering, and incidents.
    • Europe
      mail.europe-west3.email.dlp.paloaltonetworks.com
    • APAC
      mail.asia-southeast1.email.dlp.paloaltonetworks.com
    New Application Support
    Enterprise DLP now supports the following new applications:
    • Confluence Web
    • (
      Images
      ) Facebook Web
    • Glassdoor Web
    • Google Photos Web
    • LinkedIn Web
    • Microsoft Azure Storage
    • Smartsheet Web
    • Udemy Web
    • Zendesk Web
    New AI Application Support
    Enterprise DLP now supports the following new AI applications:
    • Google Bard
    • Hugging Face API
    • Microsoft Azure OpenAI Studio
    • Microsoft Bing
    Expanded File Size Support for Existing Applications
    Enterprise DLP now supports large file inspection for the following applications:
    • Microsoft Teams Web
    • Quip

    August 2023

    New Features
    Relevant Geographic Tags for Predefined Data Patterns
    Predefined data patterns now display
    Relevant Geographies
     tags to indicate whether the match criteria in the predefined data pattern apply globally or is specific to a geographic region.
    New Predefined ML-Based Data Patterns
    The following new predefined ML-based data patterns for file-based inspection have been added to scan for an image of the following embedded in a PDF, ZIP file, or a standalone image.
    • ID Card - Austria - Driving License
    • ID Card - Bulgaria - Driving License
    • ID Card - Canada - Driving License
    • ID Card - Canada - Social Insurance Number
    • ID Card - Denmark - Driving License
    • ID Card - Finland - Driving License
    • ID Card - Germany - Driving License
    • ID Card - Italy - Driving License
    • ID Card - Netherlands - Driving License
    • ID Card - Poland - Driving License
    • ID Card - Sweden - Driving License
    • ID Card - UK - Driving License
    • ID Card - UK - National Insurance Number
    • ID Card - US - Passport
    Support for Cloud Services Server in Canada and Japan
    Enterprise DLP users can edit the Cloud Content Settings to add a Fully Qualified Domain Name (FQDN) for the Cloud Services servers in Canada and Japan to scan Enterprise DLP data.
    Email DLP
    Email DLP prevents sensitive data exfiltration contained in outbound emails using AI powered Enterprise DLP.
    Intellectual Property Protection for Custom Documents
    Enterprise DLP now supports upload and detection of custom documents containing intellectual property that you want to prevent exfilitration.
    Detect Unique Occurrences
    Advanced data profiles now allow you to specify whether you want to Enterprise DLP to detect all instances of traffic match criteria or only unique instances of the traffic match criteria.
    Custom File Properties
    Custom file property data patterns on Cloud Management and the DLP app now include predefined file property types supported by Enterprise DLP such as File Name, Owner, File Hash, and AIP Tags.

    July 2023

    New Features
    EDM CLI Application 3.0
    The Exact Data Matching (EDM) CLI application 3.0 supports processing of EDM data sets with rows that contain blank or empty cells.
    The Exact Data Matching (EDM) CLI application 3.0 now includes FIPS libraries for encryption and decryption to satisfy FIPS and FedRAMP compliance requirements.
    Enterprise DLP now supports increasing the data cell limits for EDM data set uploads. Up to 1 billion cells are supported across your Enterprise DLP tenant.
    To raise the data cell limits, contact Palo Alto Networks Customer Support and use the following format when making the limit raise request.
    • Ticket Title
      —Title the ticket as an Enterprise DLP limit raise request for EDM.
      For example,
      Enterprise DLP - Limit Raise Request for EDM
      .
    • Ticket Body
      —Include the number of cells you want the limit increased by across your Enterprise DLP tenant.
      • Total cell count
        —1 billion cells
    New Application Support
    Enterprise DLP now supports the following new applications:
    • Facebook Messenger Web
    • Google Cloud Platform
    • Google Meet
    • Quip
    • Twitter Web
    • Webex Desktop

    June 2023

    New Features
    Support for AWS Key Management Service for Evidence Storage
    Enterprise DLP now supports connecting an S3 storage bucket encrypted using the AWS Key Management Service (KSM) to save evidence for investigative analysis.

    May 2023

    New Features
    New Application Support
    Enterprise DLP now supports the following new applications:
    • Google Chat Web
    • Google Forms Web
    • Microsoft Excel Desktop
    • Microsoft PowerPoint Desktop
    • Naverworks Web
    Expanded Download Support for Existing Applications
    Enterprise DLP now supports download inspection for the following applications:
    • Microsoft Excel Web
    • Microsoft OneNote Web
    • ServiceNow Web
    Expanded File Size Support for Existing Applications
    Enterprise DLP now supports large file inspection for the following applications:
    • Microsoft OneDrive Web - Business
    • Microsoft PowerPoint Web
    • Salesforce Web
    Expanded Inspection Type Support for Existing Applications
    Enterprise DLP now supports file-based inspection for the following applications:
    • Microsoft PowerPoint Web

    March 2023

    New Features
    New Application Support
    Enterprise DLP now supports the following new applications:
    • Apple iCloud Web
    • Bitrix24 Web
    • Blackboard Web
    • Canvas Web
    • DocSend Web
    • Egnyte Web
    • Evernote Web
    • Google Drive Web
    • Microsoft OneDrive Web - Business
    • Microsoft OneDrive Desktop - Business
    • Blogs (e.g Wordpress, Medium)
    Expanded Download Support for Existing Applications
    Enterprise DLP now supports download inspection for the following applications:
    • Box Desktop - Business
    • Microsoft SharePoint Desktop
    • Microsoft SharePoint Web
    • Naver Mail Web
    • Salesforce Web
    Expanded File Size Support for Existing Applications
    Enterprise DLP now supports large file inspection for the following applications:
    • Box Desktop App - Business
    • Microsoft OneDrive Web - Business
    • Microsoft SharePoint Desktop
    • Microsoft SharePoint Web
    • ServiceNow Web
    Support for SFTP Server to Save Evidence Storage for Investigative Analysis
    Enterprise DLP now allows you to connect your SFTP Server to Enterprise DLP to save evidence for investigative analysis on the DLP app on the hub and Cloud Management.

    February 2023

    New Features
    Predefined DLP Policy Manager and DLP Incident Manager App Roles
    Two new predefined access roles are introduced to help control access to Enterprise DLP based on user function.
    Inspection of Contextual Secrets for SaaS Security
    Enterprise DLP now supports inspection of one contextual chat messages and a response containing a password to identify when a password is shared through the Slack application.
    Support for Cloud Services Server in the Australia
    Enterprise DLP users can edit the Cloud Content Settings to add a Fully Qualified Domain Name (FQDN) for the Cloud Services server in Australia to scan Enterprise DLP data.

    January 2023

    New Features
    New Predefined ML-Based Data Patterns
    The following new predefined ML-based data patterns for file-based inspection have been added to scan for an image of the following embedded in a PDF, ZIP file, or a standalone image.
    • ID Card - India - Aadhar Card
    • ID Card - India - PAN Card
      .
    • ID Card - USA - Credit Card
    • ID Card - USA - Driving License
    • ID Card - USA - Social Security Number

    November 2022

    New Features
    Web Form Data Inspection for Enterprise Data Loss Prevention on Cloud Management
    More data is being exchanged in non-file formats that leverage collaboration applications, web forms, Cloud applications, and social media. Enterprise DLP now supports inspection of non-file format traffic on Prisma Access (Cloud Managed) to strengthen your security posture and prevent exfiltration of sensitive data.

    October 2022

    New Features
    Support for Cloud Services Server in India
    Enterprise DLP users can edit the Cloud Content Settings to add a Fully Qualified Domain Name (FQDN) for the Cloud Services server in India to scan Enterprise DLP data.

    August 2022

    New Features
    Nested Data Profiles
    Enterprise DLP now supports creating a single data profile containing multiple nested data profiles on the DLP app and Prisma Access (Cloud Managed). This enables you to consolidate match criteria to prevent exfiltration of sensitive data to a single data profile that can leveraged in a single Security policy rule.

    July 2022

    New Features
    Enterprise DLP Audit Logs on Prisma Access (Cloud Managed)
    Review your Enterprise DLP Audit logs on Prisma Access Cloud Management for a comprehensive history of when data patterns, data profiles, and data filtering are created, modified or deleted across your Enterprise DLP security service.
    Create an API Token on Prisma Access (Cloud Managed)
    Enterprise DLP now supports creating an API Token on Prisma Access Cloud Management.

    June 2022

    New Features
    Monitor the DLP Service Status on Prisma Access (Cloud Managed)
    You can now monitor the DLP service status from Prisma Access Cloud Management.
    Enterprise DLP End User Alerting with Cortex XSOAR Support for Microsoft Teams
    Manage Enterprise DLP Incident Resolutions
    Assign and manage the case resolution status for Enterprise DLP Incidents on the DLP app or Prisma Access Cloud Management when traffic matches your data profiles or data filtering profiles.
    Enterprise DLP Audit Logs on the DLP App
    Review your Enterprise DLP Audit logs on the DLP app for a comprehensive history of when data patterns, data profiles, and data filtering are created, modified or deleted across your Enterprise DLP security service.

    May 2022

    New Features
    Support for Microsoft Azure to Save Evidence Storage for Investigative Analysis
    Enterprise DLP now allows you to configure cloud storage on Microsoft Azure to save evidence for investigative analysis on the DLP app on the hub and Prisma Access (Cloud Managed).
    Search DLP Incidents Using Report ID
    Enterprise DLP now supports searching DLP incidents using a Report ID on the DLP app and Prisma Access Cloud Management.
    Support for Cloud Services Server in the United Kingdom
    Enterprise DLP users can edit the Cloud Content Settings to add a Fully Qualified Domain Name (FQDN) for the Cloud Services server in the United Kingdom (UK) to scan Enterprise DLP data.

    April 2022

    New Features
    Enterprise DLP End User Alerting with Cortex XSOAR
    Enterprise DLP now supportsend user alerting using Slack by leveraging integration with Cortex XSOAR. This allows your team to understand why an upload was blocked, enables self-service temporary exemptions for uploads, and provides an audit trail to understand the upload and response history for data scanned by the DLP cloud service.
    Save Evidence Storage for Investigative Analysis on Prisma Access (Cloud Managed)
    Prisma Access (Cloud Managed) now allows you to save evidence for investigative analysis on Prisma Access Cloud Management.
    Edit the Enterprise DLP Snippet Settings on the DLP App
    The DLP app on the hub now supports editing the Enterprise DLP snippet settings.

    March 2022

    New Features
    Support for 7-ZIP File Inspection
    Enterprise DLP now supports inspection of 7Z ZIP files for the 7-ZIP file archiver.
    Enhanced Support for Image Detection
    Enterprise DLP now supports detection of .jpg, .jpeg, .png, .tif, and .tiff image file types when Optical Character Recognition (OCR) is enabled.
    Nested Data Profile Match Criteria
    Enterprise DLP now supports nesting additional match criteria for data profiles on the DLP app and Prisma Access (Cloud Managed) to more accurately define your compliance rules.

    February 2022

    New Features
    Create Data Patterns on the DLP App on the hub
    Enterprise DLP now supports creating custom (basic and weighted) and file property data patterns on the DLP app on the hub. Additionally, you can clone existing custom data patterns.

    January 2022

    New Features
    Expedited Enablement of Optical Character Recognition (OCR)
    Optical Character Recognition (OCR) enablement is now expedited when enabled on Prisma Access (Cloud Managed) or on the DLP app on the hub for Next-Generation firewalls and Prisma Access (Panorama Managed). Now when you request OCR enablement, the request is fulfilled in 15 minutes after it is received by the DLP cloud service.
    New Data Patterns For Enterprise DLP
    Enterprise DLP now includes 56 new data patterns and 5 new data profiles. New data patterns include PCI data patterns for full bank account numbers, routing numbers localized in various countries (Australia, Canada, parts of Europe, China, and Japan), IBAN numbers, CCNs for various credit card types (American Express, Visa, Mastercard, and Discover).

    December 2021

    New Features
    New Data Profiles for Enterprise DLP
    Enterprise data loss prevention (DLP) now includes 7 new predefined data patterns and 2 new predefined data profiles to provide scanning for medical codes, NPI codes, and more credentials, access tokens, and keys.

    November 2021

    New Features
    Manage Enterprise DLP on Prisma Access (Cloud Managed)
    Prisma Access (Cloud Managed) supports comprehensive management of Enterprise DLP from Prisma Access Cloud Management. You can now create and configure Enterprise DLP data patterns and data profiles, and monitor Enterprise DLP incidents.

    October 2021

    New Features
    Support for Data Profiles Containing EDM Datasets and Data Patterns
    Enterprise DLP now supports creating custom data profiles on the DLP app on the hub that contain both data pattern and Exact Data Matching (EDM) datasets to define the match criteria.

    September 2021

    New Features
    Exact Data Matching (EDM)
    Enterprise DLP now supports EDM to detect sensitive and personally identifiable information (PII) in structured data sources.

    July 2021

    New Features
    Optical Character Recognition (OCR)
    Enterprise DLP now supports Optical Character Recognition (OCR) to enable the DLP cloud service to scan files with images containing sensitive information that match your Enterprise DLP data profiles.

    Recommended For You

    © 2024 Palo Alto Networks, Inc. All rights reserved.