Ask the Expert

What enterprise tools can scan files for sensitive data?

Is there an enterprise tool available on the market to scan all the workstations on a network and find non-compliant files like mp3s and videos? I would also like to scan text-based files for sensitive data like credit card or social security numbers.

    Requires Free Membership to View

The first question is easy: There are quite a few tools out there that will let you inventory applications and files stored on enterprise workstations. Simply searching the Web for "workstation audit" will provide information about many suitable products.

The second half of your question is a bit more challenging. Searching systems for the presence of sensitive data (such as credit card numbers or SSNs) is a hot topic these days. Given the recent spate of high-profile data security breaches, organizations are keen to secure known stores of sensitive information, as well as ferret out any dangerous unknown goldmines. There are open source security tools to assist with this task, like Spider from Cornell University. The downside to any of these tools is that they're bound to have a high false-positive rate, and the only solution is spending time analyzing log files.

More information:

  • Learn how the PCI standard affects the storage of sensitive information.
  • Find out more about acceptable use policies.
  • This was first published in December 2006

    There are Comments. Add yours.

    TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

    REGISTER or login:

    Forgot Password?
    By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
    Sort by: OldestNewest

    Forgot Password?

    No problem! Submit your e-mail address below. We'll send you an email containing your password.

    Your password has been sent to: