Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
217 results found
-
Ability to exclude domains from autoclassification trigger
As a user, I want to be able to exclude my company domains from the Shield email address autoclassification trigger, so that policies are not being applied to internal emails, just external PII
5 votesNot a priority. Will revisit in 6 months
-
Show Auto-Classification Criteria Matches on Classification Label On File
Auto-classification matches are currently stored within metadata on a file. If auto-classification classifies a piece of content, we'd like for the classification label indicator on a file (or hovering over the label) to show what criteria was met which requires a specific label. The purpose of this is to have a visual indicator to reinforce the sensitivity of content within a file.
5 votes -
Remove Collaborator Access Policy Security Control in Shield
When creating an access policy in Shield, there needs to be a security control that removes a collaborator after a specific period of time or on a specific date. It would work very similar to the "Invited Collaborators Expiration Settings" option that is available in the Admin Console under the Content and Sharing tab, but would be tied to a classification setting.
5 votes -
5 votes
Not a priority. Will revisit in 6 months.
-
Allow groups to change classification levels
We would like to see the option of a Box group to be able to change the classifications, along with the options we already have available.
This would allow us to create a group(s) that align with our written policies.
4 votes -
Make MPIP and Shield Classification Labels Bidirectional
This make require partnership with Microsoft, but it would be ideal if the MPIP integration was bidirectional. For example, if a file in Box doesn't have an MPIP label, but a Shield classification label is applied, the document would have an MPIP label applied based on the mapping table
4 votes -
Request to improve the behavior of files with "Download and Print Restrictions" set on Box Drive
In Shield > Access Policy, we are creating a classification label for the policy that has "Restrict downloading and printing" set as the security control.
Depending on when you set this label classification, Box Drive may not have the limitations you expect.
I would like to see an improvement so that files with "Download and Print Restrictions" set cannot be opened or copied in Box Drive from the moment the settings are set.The specific steps and events are as follows.
1. Open the file before setting the classification label in Box Drive.
2. Edit, save and close the file.…4 votes -
Additional Information BoxShield Anomalous Download Alerts
Include further information within the anomalous download alert to show which application\service was used. Currently, this is only available from the user activity report, which takes a while to generate.
If the hostname and device type could be included, this would help decipher if anomalous downloads have taken place acorss multipe devices.
4 votes -
Ability to configure Box shield alerts
Be able to set Shield alert priority based on the severity (quantity, amount, % change) of the Box Shield anomalous behavior. Today the Shield alerts are static and apply to the category as whole and not related to a quantifiable measure of risk. a 100% increase is treated the same as a 10,000% increase.
4 votes -
Box Shield Smart Access - Require approval when doing a Business Justification override of a Classification
I want to allow team members to override a Box Shield Classification/Access Policy with a Business Justification ONLY IF the appropriate person approves the override.
"Appropriate person" would be 100% configurable and different across different Classification Labels. Options like:
- Person who created the Classification Label
- Main Admin or Co-Admin with appropriate permissions
- An assigned authorized person or group (e.g. legal, compliance, infosec, IT, folder or file owner).E.g. scenario #1: "Highly Classified" label - only Admin, Co-Admin with Shield permission, xxx person in InfoSec, or yyy person in IT could approve the override.
E.g. scenario #2: "Internal…
4 votes -
I would like the access policy to have preview only functionality
I would like the access policy to have preview only functionality.
If only some files in a folder with editor privileges can be set to preview, there is no need to create a separate folder.4 votes -
4 votes
-
Allow custom Shield classification order
As a user, when I apply a classification, I want to see them in order of sensitivity, as opposed to alphabetical
4 votesNot a priority. Will revisit in 6 months.
-
Box Sheild can use some help
It would be great if there was a way to be able to enter notes on an incident. Also to flag an incident as complete and have it removed from the list.
4 votes -
Notify or provide options on password protected files in Automated Classification
When running automated classification, files containing passwords will not be checked for PII information. This means they are potentially at risk of getting shared externally. There should be options to classify them if they are password protected or it should have the option of alerting.
4 votes -
Allow configuration of permissions to apply and change each classification created
To apply or change a classification, select "Owners/co-owners and editors" in the classification settings, and then click Users with editorial privileges or higher can apply and change the classifications.
However, by implementing a feature that allows configuration of permissions to apply and change each classification created, the Security can be enhanced.4 votes -
Tale over the settings in shield trial mode
Currently, the trial mode classification and settings will disappear at the end of the trial period.
If we have a Shield contract, we would like to take over its classification and settings.By eliminating the need to set them up again in the production environment, we can make a smooth transition.
4 votesNot planned for FY23. Will reconsider for FY24.
-
Classification definition
Currently when classifying a document it is only possible to see the top 2-3 lines and is not rich text therefore doesn't support returns, bold type, links, bulleted lists or colour.
While the full 300 characters are displayed in the details pane, Users need to see all the details prior to applying the classification.REQUEST: To make the dropdown either expandable (i.e. 'show more') or to show the full 300 character classification definition and to make the definition field 'Rich Text' so its possible to give more context to the classification e.g. provide a list of example documents or link…
4 votes -
We want the ability for Download policies to also trigger on unusual download activity by external collaborators
We see external collaborators with high download activity using accounts outside of our enterprise (ie: gmail, yahoo?). The business is getting quite frustrated that they cannot report on these email addresses.
4 votesThis is quite complex to implement, we are researching to figure out how best to fix this.
-
Cannot specify official apps in Shield's list
The Shield List allows third-party integration tools to be configured as integrations, but official apps such as Box Mobile App and Box Edit cannot be configured.
This causes the following problems.
- Mobile apps cannot be excluded from “suspicious session” detection. Since mobile apps are accessed via carrier lines, their IP addresses are different from those of PCs, and if they are accessed at the same time, they are detected as suspicious sessions.
- Office co-editing cannot be added to the linked apps whitelist in the access policy. It is impossible to control “prohibit DL on BoxDrive, but allow Office…3 votes
- Don't see your idea?