Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
185 results found
-
Tale over the settings in shield trial mode
Currently, the trial mode classification and settings will disappear at the end of the trial period.
If we have a Shield contract, we would like to take over its classification and settings.By eliminating the need to set them up again in the production environment, we can make a smooth transition.
4 votesNot planned for FY23. Will reconsider for FY24.
-
Classification definition
Currently when classifying a document it is only possible to see the top 2-3 lines and is not rich text therefore doesn't support returns, bold type, links, bulleted lists or colour.
While the full 300 characters are displayed in the details pane, Users need to see all the details prior to applying the classification.REQUEST: To make the dropdown either expandable (i.e. 'show more') or to show the full 300 character classification definition and to make the definition field 'Rich Text' so its possible to give more context to the classification e.g. provide a list of example documents or link…
4 votes -
4 votes
Not a priority. Will revisit in 6 months.
-
Request to improve the behavior of files with "Download and Print Restrictions" set on Box Drive
In Shield > Access Policy, we are creating a classification label for the policy that has "Restrict downloading and printing" set as the security control.
Depending on when you set this label classification, Box Drive may not have the limitations you expect.
I would like to see an improvement so that files with "Download and Print Restrictions" set cannot be opened or copied in Box Drive from the moment the settings are set.The specific steps and events are as follows.
1. Open the file before setting the classification label in Box Drive.
2. Edit, save and close the file.…3 votes -
Additional Information BoxShield Anomalous Download Alerts
Include further information within the anomalous download alert to show which application\service was used. Currently, this is only available from the user activity report, which takes a while to generate.
If the hostname and device type could be included, this would help decipher if anomalous downloads have taken place acorss multipe devices.
3 votes -
Block file request via classification / access policy
Currently there is no security control for access policies that allows to block file requests.
We created a classification "external" with the security control "External Collaboration Restriction". However it is still possible that externals upload files to these folders. To us this is also a way of external collaboration. And this also creates the risk of mixing internal and external files in folders that are classified as internal.3 votes -
Encrypt shield downloads
Encrypted downloads of files flagged as malicious so analysts can safely move files to a sandbox for further analysis.
3 votes -
Enable "Mark file as safe" in API
Provide an API endpoint to release a quarantine file ("Mark file as safe" in GUI) within box shield.
3 votes -
Restrict users to only some Shield label
Currently you can choose which users can put Shield label to contents.
However, this setting is for the whole tenant but I would like to set different types of users to some Shield label that does not apply to all the Shield labels.3 votes -
Trigger rescan for Auto-Classification when adding new classifications
We did not implement Box Shield immediately upon standing up our new environment. After over 1TB of data was uploaded, leadership wanted us to implement new auto-classifications. There is currently no way to force a rescan of all existing documents to apply those new classifications. Going into each folder and copy/pasting, moving, or editing each file is impractical for tens of thousands of uploaded files. Would like a simple way to trigger the rescan without having to engage for a consulting project for box.com to create custom scripts to update the classifications.
3 votes -
Co-Admin permission - Manage Shield Lists
It would be good to be able to delegate the update of Sheild lists so that someone can amend who is in a list without providing access to other shield functions.
For example, a list of people email addresses that can change because external parties that we collaborate change but we want to be able to remove/add people.
3 votes -
classification labeling time lag when item added to a folder with classification
When adding items to a folder with defined classification, there is a time lag (appx. 5 min) to reflect the classification to added items. (we know its 20min for 40K items but still we want to remove the time lag)
During the lag, a user can temporarily operate the items outside the policy defined on its classification.
This seems a critical defect in terms of its security, so please consider to fix the situation.
Thanks,3 votes -
I would like the ability to hide malicious content in BoxShield.
If malicious content is uploaded to Box, we would like the ability to hide the content as well as suppress downloads.
If possible, we would like the content to be hidden automatically.
*For example, if infected with ransomware, we would like to hide the infected file and the file with the threatening message.This is because we want to take action on the administrator's side so as not to worry users.
3 votes -
Box Shield: enable granular controls for Threat Detection anomalous download behavior alerts
Box Shield: enable granular controls for Threat Detection anomalous download behavior alerts.
E.g. alert me when any file larger than xx GB is downloaded.
E.g. alert me when xx% more content is downloaded than normal.
E.g. alert me when xxxx file quantities are downloaded from yyyy folder.
3 votes -
Enable Smart Access automated classification in Box to support optical character recognition (OCR)
Enable automated classification in Box to support optical character recognition (OCR), so Box can extract and consider text embedded in images.
3 votes -
I would like to be able to change from a classification with a strict policy to a classification with a loose policy. The reverse should be
For the purpose of strictly protecting confidential information, we want to make it impossible to change from strict to loose permissions, even for users who have the authority to change classification labels. However, with the current Shield function, it is not possible to set the priority of changeability.
One possible way to achieve this is to allow users to set rankings for classifications or policies, and to limit the direction of the rankings.3 votesNot on the roadmap for FY25, will evaluate for FY26
-
Box Sheild can use some help
It would be great if there was a way to be able to enter notes on an incident. Also to flag an incident as complete and have it removed from the list.
3 votes -
Make available list of countries available for a Shield List
The input fields are not the easiest way to find a value to add to a Shield List. Naming convention is different across systems, so it would be helpful to know the values that are available to be added.
3 votes -
View only ability as admin to view Detection rules, policies, and lists.
Isolate the EDIT SHIELD CONFIGURATION co-admin permission to 2 different permissions:
- View-only detection rules, access policies, lists
- View, Edit, and Create Detection rules, access policies, and lists.
3 votes -
Ability to send Shield alerts to a Pager Duty email address for email integration.
It looks like I'm only able to notify users who are Shield co-admins whenever an alert is created. I would like to send alerts to a Pager Duty email address for email integration.
I would like to avoid creating a separate user for the purposes forwarding emails to pager duty. I would also like to avoid creating a forwarding rule on my own inbox.
Is it possible to send Shield alert notifications directly to non-user email addresses? If not, is this something the Box team is working on or can consider implementing?
3 votes
- Don't see your idea?