• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 302
  • Last Modified:

Testing DLP with SSNs

Our DLP solution (by Trend Micro) claims to cross-reference SSNs against the actual census list of SSNs for valid SSNs. We would like to do some extnensive testing related to DLP. How can we test the SSN policy if it will only recognize and block actual, real SSNs?
1 Solution
btanExec ConsultantCommented:
you can try out this test sample http://www.identityfinder.com/kb/Getting-Started/110845
i was also thinking besides being positive testing, the coverage gauge should have the test set having below "variety"
- formatted SSN (in the form NNN-NN-NNNN, where N is any number from 0-9)
- unformatted SSN (in the form of NNNNNNNNN, where N is any number from 0-9, simply removes '-')
- invalid as SSN (in the form of faked SSN's and invalid sequences like 123-45-6789 or full sections containing all 0's)
- proximity matches such as a leading or trailing value (SSN, SS#, etc.)

probably regex for SSN is most of DLP friends and searching via bing below can generate more test sample if required. Do consider other carrier for SSN as content - not sure if it also detect that in image, binary etc or simply document format like Office, adobe etc...
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

How do you know if your security is working?

Protecting your business doesn’t have to mean sifting through endless alerts and notifications. With WatchGuard Total Security Suite, you can feel confident that your business is secure, meaning you can get back to the things that have been sitting on your to-do list.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now