Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
249 results found
-
auto classification policies/engine to apply scanning of files within a compressed file
Extend auto classification policies to compressed files (content within the zip) as well and have shield policies be able to enforce rules established for certain classifications. If something inside the unprotected compressed file is detected according to the auto classification policies, apply the same classification to the compressed file so the shield policies are adhered to.
Without this, shield policies can be bypassed by simply zipping a file that would have triggered shield policy as the scan doesn't currently scan files within the compressed file.
1 vote -
Risk Score Based Trigger for Box Shield Malicious Content Detection Rule
I would love an option to set Risk Score Based Triggers for Box Shield Malicious Content Detection Rules. This would allow me to prioritize alerts based on the risk score and/or only be notified when a file received a risk score above a certain threshold I could set.
1 vote -
IP Whitelisting
Please find our use case below for your better understanding and let us know how Box can support our requirements.
We are working with multiple clients, and our primary focus is data handling, especially PII data. Currently, we have a centralized storage system (File Server) to store client data files and folders, which are accessible by both internal users and clients, based on the access permissions we provide.
We are now planning to create Box accounts for each client, store the data there, and grant access to files/folders for our internal users as external collaborators. In this setup, the Box…
1 vote -
Require comments when changing classification labels and keep history
Require comments when changing classification labels and keep history
Currently Box Shield does not allow the reason or history to be kept when changing.
We would like to see a comment input field added to the UI when making changes, and also made mandatory in the administrator settings.If it is a file, we would like to leave the comment entered in the comment (activity) field of the file so that the end user can check the history.
For folders, we would like to leave them as undeletable txt files, etc.Such a feature would allow all users above the…
1 vote -
VS Exposure-type Ransomware
Suggestion.
Box Shield classification labels should be able to prohibit downloading via Box desktop (BoxDrive) or via linked apps, even if you are the co-owner or owner.Background Threat.
Currently, the mainstream of ransomware worldwide is not of the encryption type, but of the exposure-type or dual-threat-type.
Version control functions are not effective against exposure-type and dual-threat ransomware.
An effective countermeasure against this type of ransomware is to prohibit the downloading of confidential files that should not be disclosed on the dark web.Issue to solve.
Box Shield's no-download access policy and access policy restricting linked apps do not target…1 vote -
Box Classification Settings: provide ability to restrict modifications to Admins and Co-Admins
Currently, Box Classification configuration allows you to restrict classification modifications to Owner, Co-Owner, Editor, and Viewer Uploader. We would like to add Admin and Co-Admin to this list. Thank you!
1 vote -
Shield Classification UI option should gray out when user does not have permissions to update classification
If the user does not have access to classify content, they should not get this option to change the classification in shield.
1 vote -
Information Barriers Segment Report
Add an Admin Console report that can easily show which users are within Information Barrier segments. or add information barriers to the current User Details report. The current User Details report does not pull any values from the Information Barriers segments.
1 vote -
Update Shield Access Policy Restriction for Box Sign
For the Box Sign Request Restriction, add the option allow a signature request, but require additional security controls (e.g., signer authentication, password) for the signature request.
We need the ability to send sensitive content for signature but don't want it sent using a public link.
1 vote -
Allow Shield Location Rule Restriction By Folder
Currently Shield's Location Restriction rule is applied to the entire EID by user/groups. It would be helpful to be able to set this up by specific folder(s) or folder structure.
Ex. Team A is not allowed to view specific content while in Location X, however Team B is able to. Currently the restriction would be set on the EID level and both teams would be under this restriction.
We could exclude group B or other groups from the rule however Group A would still be restricted from accessing other content within the EID.
1 vote -
Applying folder exceptions/exclusions to Classification policies
Would like to apply folder exceptions/exclusions to Classification Policies. Currently, we can apply to a selected group of folders, but we have an organizational need to be able to apply a classification policy to all content and add a small selection of folders to exclude from that classification policy.
1 vote -
Additional info in Anomalous Download Shield e-mail notifications
It would be very helpful to see "Previous weekly download amount", "anomalous download amount" and the "delta" on Anomalous download e-mail notifications. We use these to identify notifications that require further investigation, but these are only available by clicking into the reports which make this kind of detection difficult to scale and manage.
1 vote -
Allow for exceptions on the Download and Print Restriction security control.
Allow for exceptions on the Download and Print Restriction security control.
We want to restrict users from downloading files that have been identified as having PII. However, we would like a mechanism to allow users that have a business reason to download files. Either through a 'User Justification' similar to the 'External Collaborators Restriction' security policy or an approval workflow.
1 vote -
Allow groups to be specified as 'notified to' in Box Shield Threat Detection Rules
Only user accounts can be specified for the 'Notification Destination' of the Threat Detection rules in Box Shield.
Since maintenance is required when the person in charge changes, it should be possible to specify a group.■In Japanese:
Box shieldに存在する検出ルールの「通知の送信先」は、ユーザーアカウントのみが指定できます。
担当者が変わったときメンテナンスが必要になるので、グループを指定できるようにしてください。1 vote -
Shield access policy to restrict shared link creation
Have the option to restrict shared link creation with Box Shield access policy
1 vote -
Secure admin only download of 'malicious' files for analysis
Admins should be able to download Box Shield tagged malware without marking the file safe for everyone. That way a security admin could download the file and scan it with their own security tools. That’s the only real way to diagnose if a file is malicious or just a false positive.
Asking us to mark it safe by chatting with the user is far from best practice
1 vote -
internal collaboration
Add a "Internal Collaboration Restriction" option for Box shield access policy. My company uses file classifications that are intended to inform users so that they know to restrict sharing of files to only those who need to know. It would be great to use the justification feature that already exists in the External collaboration restriction but within our domain.
1 vote -
Classification labels are also applied to partial matches for words set in "Custom Term"
Classification labels are also applied to partial matches for words set in "Custom Term"
カスタム用語で設定された単語が部分一致した場合にも分類ラベルを適用内容
Classification labels are assigned only when an exact match is registered in the file for the file condition "custom term" in the Management Console > Classification > Classification Policy.
If you want to assign a classification label to a partially matched term, you need to register all the terms in the "custom term".
To save time and effort in registering, please improve the system so that classification labels are assigned even when partially matching words are found in the file.<Japanese>
管理コンソール>分類>分類ポリシーのファイル条件「カスタム用語」について完全一致した語句がファイル内に登録されている場合のみ分類ラベルが付与される
部分的に一致している語句も分類ラベル付与対象としたい場合、すべての語句を「カスタム用語」に登録する必要がある
登録する手間を省くため、部分的に一致した語句がファイル内に記載されている場合も分類ラベルが付与されるように改善してほしい1 vote -
Add file extensions of .mus and .sib to automated classification in Box Sheild
Add the file extensions .mus and .sib for music notation software to automated classification functions to assist with the protection of I.P.
1 vote -
Ability to have an Access Rule that limits an anonymously shared link to an IP address range.
We have documents stored in Box that we have used the anonymous shared link option. The reason we need this link is to manage the number of Box licenses. We have a large number for folks that need to view or download these documents and do not need to update or edit them. So a license does not make sense for them. We do what to limit access to these links to the internal folks only. We have explored setup of Access Rule to limit, being anonymous link, the rule does not apply. We would like to add the ability…
1 vote
- Don't see your idea?