Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
206 results found
-
Access policies for individual folders
Would it be possible to set up access policies that can be applied per-folder instead of by Classification label?
We have Ethical Walls and security concerns where we need to prevent sharing of files of Client A with Client B and also with preventing individual users from being shared folders.
One way to do this would be classification policies - but I have far more clients than the twenty five label limit.
The way around this would be to allow access policies by folder, regardless of classification, as well as the Box-wide access policy for unclassified content.
Client A -…
7 votesThe feature is being evaluated for FY25 roadmap
-
Block single user
Our security has deemed a single email as suspicious. We would like to block this single email from connecting to our Box, or being collaborated into our Box.
With Shield we can block the whole domain, but that approach is too broad and would limit too many valid email addresses.
7 votesNot a priority. Will revisit in 6 months.
-
Whitelisting Access Using Managed User Groups
Companies frequently hire contractors and provide them with company email addresses to access internal networks and applications. This creates an issue with contractors having visibility into an entire folders and not just the projects/folders that apply to them. Shield's whitelisting capabilities allow us to limit external email domains, but because contractors are given a company email domain the whitelisting capabilities do not apply.
We would like to be able to create a "Consultants" Managed User Group and whitelist access to break waterfall permission for internal Managed User Groups.
7 votes -
Shield reports suspicious IP location when opening files through O365. Adds lots of unnecesary noise
In Shield, when a user previews/opens a file to Office Online it tracks as a suspicious IP location. It would be great if it could be separated and designated a lower priority than a genuine account compromise. Just a suggestion to clean up the Shield alert queue
7 votes -
Geo Restricts for External Collaborators
Implement a Shield Geo-fencing control that would disable access to Box folders for External Collabs when they try to access Box content from abroad.
6 votes -
File version on Shield Alert
I would like to have the actual file version shown in the Shield Dashboard Alert ID. Currently it shows when the file is uploaded but does not show the file version. If the version is shown, it would be much easier to check the file.
6 votes -
Ability to customize Box Shield Malware scan messages
Ability to customize the email alerts that are sent for Box Shield Malware scan when detected. Would like the ability to customize the email alerts that are sent to end users when malware is detected on content uploaded.
Use Case: Customized messaging allows the customer to provide instructions or further details on what users need to do next when they receive the alert. Customer wants to notify end users on the internal process to ensure that the proper steps are taken.
6 votes -
Add classification columns to Collaboration and Shared Link Reports
Add columns to the Collaboration and Shared Link reports to display file/folder classification
6 votes -
"Smart Access: Download restriction" for G-Suite
We want "Smart Access: Download restriction" to control the download/printing capability of G-Suite apps. We want the integration just like office online which restrict download/print on office online apps.
For security perspective, we want to minimize the risk of data breach, so we are planning to store the confidential files on box and restrict the content to be downloaded to the devices. However currently if user opened the files on G-Suite, the files can be downloaded or printed.
6 votes -
Improvement of anomalous download
At the present, Anomalous download can't detect the external user's behavior.
I think it is the risk of data leakage.
I want to detect anomalous download of external users who is invited my tenant.
thanks5 votes -
Provide an exportable report for Shield Admin for each Anomalous Download alert
Every time an anomalous download alert is received, IT would ideally want to share a readily available report (XLSX / CSV) with the affected user's manager as they would know far more about the content and whether this is abnormal behavior. As it stands today, if the alert is not big then a manual list of folders / files is provided, or we have to run a User Activity Report (which can take some time) and then filter and cut down accordingly.
5 votes -
Separate download and print restrictions
We would like to use download and print restrictions in Access Policy separately.
Flexible configurations are required, when we handling sensitive files in Box.ex. We don't want to allow them to edit, but I do want to allow them to print.
5 votes -
Mark file as safe across entire enterprise
We have a file stored in multiple (hundreds of) locations across our Box enterprise and it regularly gets falsely flagged as malicious. We mark it as safe each time, for each location. It would be nice if there was a way to mark the file as safe for ALL locations in our Box enterprise at once. The file is identical name, size, and hash in each location so marking it as safe once instead of hundreds of times would be very much appreciated.
5 votes -
Box Shield threat detection email alerts to include complete details
Include complete incident information with the thread detection email alerts. This will make it easy to share the information with others who do not have access to Box Shield admin portal, and will also eliminate an extra step of logging into admin portal for those receiving and triaging the alerts.
Use case: infosec team receives a Box Shield malicious content alert, identifies it as needing action, and passes it to the endpoint management team for mitigation.5 votes -
If the access policy restricts download and printing, Excel files cannot be co-edited with MS Excel Online
Excel files cannot be co-edited in MS Excel Online if the access policy restricts downloading and printing.
One of the purposes of using Excel Online is co-editing.
I would like to be able to co-edit in a situation where downloads are restricted.5 votes -
Ability to exclude domains from autoclassification trigger
As a user, I want to be able to exclude my company domains from the Shield email address autoclassification trigger, so that policies are not being applied to internal emails, just external PII
5 votesNot a priority. Will revisit in 6 months
-
Show Auto-Classification Criteria Matches on Classification Label On File
Auto-classification matches are currently stored within metadata on a file. If auto-classification classifies a piece of content, we'd like for the classification label indicator on a file (or hovering over the label) to show what criteria was met which requires a specific label. The purpose of this is to have a visual indicator to reinforce the sensitivity of content within a file.
5 votes -
We are unable to respond when Geodetection alerts are triggered. Would greatly appreciate ability to prevent access.
We have had a # of Geodetection alerts from users with unexpected IP addresses accessing shared links. Currently, we are unable to block these users, so we can only remove files after the fact. Our security team is requesting an ability to prevent this access (potentially with an ability for admins to override and allow the access).
5 votesTo be delivered October/November 2023.
-
Remove Collaborator Access Policy Security Control in Shield
When creating an access policy in Shield, there needs to be a security control that removes a collaborator after a specific period of time or on a specific date. It would work very similar to the "Invited Collaborators Expiration Settings" option that is available in the Admin Console under the Content and Sharing tab, but would be tied to a classification setting.
5 votes -
Allows the report to see the classification labels that have been applied in the past
In the User Activity Report, when a classification label is changed, it is logged. However, it does not record from which label was changed to which label..
One user currently sets the privilege to edit classification labels to editors (general employees). However, the more users with editing privileges, the greater the security risk. The only way to avoid this risk is to limit the scope of editing privileges to the owner or co-owner (superior). In that case, it would be too inconvenient, since it would be necessary to apply to the superior for a change in the classification label.
By…4 votes
- Don't see your idea?