The Traffic Light Protocol (TLP) is created to facilitate sharing of sensitive information. When this sharing mechanism is email, it is done by adding special text to the subject of any email, designating their importance.
To avoid human error and prevent sensitive documents/emails from leaking, Xeams can be configured to require approval from an authorized individual before the email is sent out.
TLP-designated emails contain one of the following text in the subject line:
Refer to Appendix A: TLP 2.0 Definitions for details on these classifications.
Human errors are the most common reason for mistakenly leaking sensitive information. Therefore, an extra layer of checks and balances provided by an email server can help avoid mistakes. Consider the following scenario as an example:
The Pre-approval plugin is used in Xeams to prevent unauthorized emails from leaving your network. Use the following steps to configure it.
|Moderator:||Specify an email address who is authorized to approve an outbound email when TLP classification is detected.|
|Sender:||This should be set to LOCAL, indicating any user on the local domain.|
|Recipient:||This should be set to FORIEGN, indicating any recipient on a foreign domain.|
|Subject:||Set this to |
|Subject is Regex:||Check this box|