Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
197 results found
-
Create an audit only mode for classification policies
Auto-classification policies can receive an audit only mode similar to Shield Access Policies. Essentially an auto-classification policy in audit only mode will return a list of files that would have triggered an auto-classification upon upload or interaction. Shield administrators can then review the list of files that would have been classified and review for accuracy.
Decreases risk of misclassifying content due to policy misconfigurations.
2 votes -
Additional Information BoxShield Anomalous Download Alerts
Include further information within the anomalous download alert to show which application\service was used. Currently, this is only available from the user activity report, which takes a while to generate.
If the hostname and device type could be included, this would help decipher if anomalous downloads have taken place acorss multipe devices.
3 votes -
Add file extensions of .mus and .sib to automated classification in Box Sheild
Add the file extensions .mus and .sib for music notation software to automated classification functions to assist with the protection of I.P.
1 vote -
Shield Blocked Email Addresses (Not only Domains)
As of right now it is not possible to block a specific user with the external collaboration access policy restriction. This is only applicable for blocking domains. This request is to be able to add a specific user to the blocked list by email address.
2 votes -
Ability to configure Box shield alerts
Be able to set Shield alert priority based on the severity (quantity, amount, % change) of the Box Shield anomalous behavior. Today the Shield alerts are static and apply to the category as whole and not related to a quantifiable measure of risk. a 100% increase is treated the same as a 10,000% increase.
3 votes -
Block file request via classification / access policy
Currently there is no security control for access policies that allows to block file requests.
We created a classification "external" with the security control "External Collaboration Restriction". However it is still possible that externals upload files to these folders. To us this is also a way of external collaboration. And this also creates the risk of mixing internal and external files in folders that are classified as internal.3 votes -
Ability to have an Access Rule that limits an anonymously shared link to an IP address range.
We have documents stored in Box that we have used the anonymous shared link option. The reason we need this link is to manage the number of Box licenses. We have a large number for folks that need to view or download these documents and do not need to update or edit them. So a license does not make sense for them. We do what to limit access to these links to the internal folks only. We have explored setup of Access Rule to limit, being anonymous link, the rule does not apply. We would like to add the ability…
1 vote -
Control Outbound Collaboration in Box Shield
Box shield collaboration policies only seem to apply to inbound collaboration (i.e. sharing from one's own tenant to an external account). We need the ability to have fine-grained controls on what invites a managed user can accept from external tenants.
1 vote -
Shield Classifications Available for Certain Folders Only
Currently, if you create a classification label it will be available to apply to any folder or file. The ask is for the option to make the classification label available to apply in only certain folders.
An example of a use case is for an ITAR classification label - users should only apply this label to content in a contained ITAR folder. While in other folders they should not see the option to apply this label in the dropdown.
Auto classification policies currently has a similar feature, 'Folder Criteria'. For the classification labels, it would be great to have a…
1 vote -
Option to Display Warning Message to Users in Access Policy Monitoring Mode
It would be great to allow admins the option to display a "warning message" to users if they attempt an action that is in violation to the policy when the policy is in monitoring mode. Understanding that monitoring doesn't prevent the user from taking the action, it would still be a good tool for soft launching access policies if the option to display a message was available.
1 vote -
Folder path for Malware
Add folder path to the exclusions of the malware scan with Shield. Use case is around safe samples of Malware being housed in Box
6 votes -
after upload, Apply classification based on the parent folder classification, not the parent,... parent folder
- if you apply classification to a folder A all subfolder will be classified : Good
- You can remove that classificaiton to a subfolder B of the folder A : good
- if you upload a file to folderB , that file will be classified same as the Folder A (the parent parent folder) : Bad
This doesn't really make sense and create a new layer of waterfall access right but based on the classification this time. Which create duplicate in other areas and make it really hard for our employee to use classification.
Note that this also applied to automatically generated…
1 vote -
block an upload by external user using Box Drive with smart access
The current Shield feature only controls downloading, cannot blocks uploading/syncing and is not ransom-proof. The biggest problem is that when external users use BoxDrive and BoxSync, ransomware-infected files are uploaded/synchronized on Box.
20 votes -
The BoxShield "Sign Request Restrictions" feature should be improved so that signature PDF and Log files can be generated.
In the BoxShield "Restrict BoxSign Requests" function, by selecting Access Policy > Security Control > Restrict External Collaboration > [Existing and New External Collaboration], signatures can be made, but no signature PDF or Log file is generated.
Please improve so that signature PDF and Log files can be generated normally when signing.<Japanese>
BoxShield「BoxSignリクエストの制限」機能にて、アクセスポリシー>セキュリティコントロール>外部コラボレーションの制限>[既存および新規の外部コラボレーション]選択によって、署名はできるが署名PDF・Logファイルは生成されない。
署名した際に、普通に署名PDFおよびLogファイルが生成できるよう改善してほしい。1 vote -
Ability to update/add definition of Virus/Malware
Ability to submit a malicious file so it can be added to the definition for Virus Scan feature.
2 votes -
Encrypt shield downloads
Encrypted downloads of files flagged as malicious so analysts can safely move files to a sandbox for further analysis.
3 votes -
Permanently mark a file as not malicious
We had a user (with Box Drive) who had a file marked as malicious. She apparently made a change to a local copy and added it back to her folder, causing it to be marked as malicious a second time. In fairness, the hash is different, since the file changed. When I looked at the first event, I ran the file through VT, and the results came back as all clean, so I marked it as not malicious. The user was still not able to access the file. I had to go back into Shield, find the second instance, scan…
2 votes -
Custom Classification Colors
Ability to add HEX codes to classification color schema.
1 vote -
Enable "Mark file as safe" in API
Provide an API endpoint to release a quarantine file ("Mark file as safe" in GUI) within box shield.
3 votes -
Anomalous Download Alerts for external users
For the Anomalous Download Alerts, I would like it to apply to external users too so that if they are invited to our tenant's folder and they start downloading a lot I get an alert.
12 votes
- Don't see your idea?