Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
197 results found
-
Remove Collaborator Access Policy Security Control in Shield
When creating an access policy in Shield, there needs to be a security control that removes a collaborator after a specific period of time or on a specific date. It would work very similar to the "Invited Collaborators Expiration Settings" option that is available in the Admin Console under the Content and Sharing tab, but would be tied to a classification setting.
4 votes -
Notify or provide options on password protected files in Automated Classification
When running automated classification, files containing passwords will not be checked for PII information. This means they are potentially at risk of getting shared externally. There should be options to classify them if they are password protected or it should have the option of alerting.
4 votes -
Allow configuration of permissions to apply and change each classification created
To apply or change a classification, select "Owners/co-owners and editors" in the classification settings, and then click Users with editorial privileges or higher can apply and change the classifications.
However, by implementing a feature that allows configuration of permissions to apply and change each classification created, the Security can be enhanced.4 votes -
Tale over the settings in shield trial mode
Currently, the trial mode classification and settings will disappear at the end of the trial period.
If we have a Shield contract, we would like to take over its classification and settings.By eliminating the need to set them up again in the production environment, we can make a smooth transition.
4 votesNot planned for FY23. Will reconsider for FY24.
-
Classification definition
Currently when classifying a document it is only possible to see the top 2-3 lines and is not rich text therefore doesn't support returns, bold type, links, bulleted lists or colour.
While the full 300 characters are displayed in the details pane, Users need to see all the details prior to applying the classification.REQUEST: To make the dropdown either expandable (i.e. 'show more') or to show the full 300 character classification definition and to make the definition field 'Rich Text' so its possible to give more context to the classification e.g. provide a list of example documents or link…
4 votes -
4 votes
Not a priority. Will revisit in 6 months.
-
Ability to provide feedback on anomalous download alerts
I would like the ability to provide user-level feedback on anomalous download alerts. Today, you can only provide feedback via the folder and suggest whether or not it contains sensitive information. It would be better if you could provide this feedback at the user level - if someone is on a specific team, they may be expected to download a lot of files from a specific folder. However, that behavior might be anomalous for another user on a different team. I also find that these alerts are often triggered for new users who are not actually downloading an unusual amount…
3 votes -
Filter Marked as safe
Shield needs a filter and a display setting for the dashboard for an alert that have been checked and marked as safe, currently it is hard to identify alerts that have been checked by other admins and marked as safe causing duplicate effort.
3 votes -
Better information on Alert Information for Location Detection Rules
Please add the country below the IP on a Shield Alert Email for Allowed countries Detection rules notification. This keeps us from having to log into box to see what country the violation occurred in..
3 votes -
Additional Information BoxShield Anomalous Download Alerts
Include further information within the anomalous download alert to show which application\service was used. Currently, this is only available from the user activity report, which takes a while to generate.
If the hostname and device type could be included, this would help decipher if anomalous downloads have taken place acorss multipe devices.
3 votes -
Ability to configure Box shield alerts
Be able to set Shield alert priority based on the severity (quantity, amount, % change) of the Box Shield anomalous behavior. Today the Shield alerts are static and apply to the category as whole and not related to a quantifiable measure of risk. a 100% increase is treated the same as a 10,000% increase.
3 votes -
Block file request via classification / access policy
Currently there is no security control for access policies that allows to block file requests.
We created a classification "external" with the security control "External Collaboration Restriction". However it is still possible that externals upload files to these folders. To us this is also a way of external collaboration. And this also creates the risk of mixing internal and external files in folders that are classified as internal.3 votes -
Encrypt shield downloads
Encrypted downloads of files flagged as malicious so analysts can safely move files to a sandbox for further analysis.
3 votes -
Enable "Mark file as safe" in API
Provide an API endpoint to release a quarantine file ("Mark file as safe" in GUI) within box shield.
3 votes -
Restrict users to only some Shield label
Currently you can choose which users can put Shield label to contents.
However, this setting is for the whole tenant but I would like to set different types of users to some Shield label that does not apply to all the Shield labels.3 votes -
Trigger rescan for Auto-Classification when adding new classifications
We did not implement Box Shield immediately upon standing up our new environment. After over 1TB of data was uploaded, leadership wanted us to implement new auto-classifications. There is currently no way to force a rescan of all existing documents to apply those new classifications. Going into each folder and copy/pasting, moving, or editing each file is impractical for tens of thousands of uploaded files. Would like a simple way to trigger the rescan without having to engage for a consulting project for box.com to create custom scripts to update the classifications.
3 votes -
Co-Admin permission - Manage Shield Lists
It would be good to be able to delegate the update of Sheild lists so that someone can amend who is in a list without providing access to other shield functions.
For example, a list of people email addresses that can change because external parties that we collaborate change but we want to be able to remove/add people.
3 votes -
classification labeling time lag when item added to a folder with classification
When adding items to a folder with defined classification, there is a time lag (appx. 5 min) to reflect the classification to added items. (we know its 20min for 40K items but still we want to remove the time lag)
During the lag, a user can temporarily operate the items outside the policy defined on its classification.
This seems a critical defect in terms of its security, so please consider to fix the situation.
Thanks,3 votes -
I would like the ability to hide malicious content in BoxShield.
If malicious content is uploaded to Box, we would like the ability to hide the content as well as suppress downloads.
If possible, we would like the content to be hidden automatically.
*For example, if infected with ransomware, we would like to hide the infected file and the file with the threatening message.This is because we want to take action on the administrator's side so as not to worry users.
3 votes -
Box Shield: enable granular controls for Threat Detection anomalous download behavior alerts
Box Shield: enable granular controls for Threat Detection anomalous download behavior alerts.
E.g. alert me when any file larger than xx GB is downloaded.
E.g. alert me when xx% more content is downloaded than normal.
E.g. alert me when xxxx file quantities are downloaded from yyyy folder.
3 votes
- Don't see your idea?