Create a Data Pattern

Create a data pattern for DLP on Prisma Access.
Data patterns enable you to specify the match criteria and identify patterns using regular expressions, file properties, or keywords that represent sensitive information on your network.
  1. Select
    Objects
    Custom Objects
    Data Patterns
    .
    Prisma Access shares the data pattern across Prisma Access device groups; you can select any
    Device Group
    from the drop-down at the top of the page and Prisma Access will share it across the
    Service_Conn_Device_Group
    ,
    Mobile_User_Device_Group
    , and
    Remote_Network_Device_Group
    .
  2. Add
    a
    Pattern
    .
  3. Specify a
    Type
    and criteria for the data pattern and give it a
    Name
    .
    Use one of the following data pattern types:
    • Regular Expression
      —Create regular expressions to use in the data pattern.
      You can choose
      Basic
      or
      Advanced
      data patterns. Use the
      Advanced
      data pattern to create a basic or weighted regular expression. With weighted regular expressions, each text entry is assigned a score, and when the score threshold is exceeded, such as enough expressions from a pattern match an asset, the asset will be indicated as a match for the pattern.
      You then use the query builder in the
      Regular Expressions
      area to add expressions, either regular (
      Basic
      ) or weighted (
      Advanced
      ).
      You can enter one or more
      Proximity Keywords
      to use with the Data Filtering pattern. Use proximity keywords in a data filtering profile with a High Confidence. When you upload a file, Prisma Access looks for the proximity keywords you specify within 200 characters of the regular expressions before it considers the specified data pattern to be a match in the file.
    • File Property
      —Add a file property pattern to match.
      For data governance and protection of information, if you use classification labels or embed tags in MS Office and PDF documents to include more information for audit and tracking purposes, you can create a file property data pattern to match on the metadata or attributes that are a part of the custom or extended properties in the file. Regardless of whether you use an automated classification mechanism such as Titus or require users to add a tag, you can specify a name-value pair to match on a custom or extended property embedded in the file.
      DLP on Prisma Access supports file property data patterns in MS Office and PDF documents. Both the OLE (.doc/.ppt) or XML (.docx/.pptx) formats of MS Office are supported.
      You then add a
      Tag Name
      and
      Tag Value
      .
      A
      Tag Name
      and
      Tag Value
      are an associated pair that specifies the property that you want to look for (for example, you can specify a
      Tag Name
      of
      Label
      and a
      Tag Value
      of
      Confidential
      ). You can add as many file properties as you’d like. When you later reference the file property data pattern in a data filtering profile, a boolean OR match is used in the match criteria.
  4. Click
    OK
    to save the data pattern.

Recommended For You