Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
197 results found
-
I would like to be able to change from a classification with a strict policy to a classification with a loose policy. The reverse should be
For the purpose of strictly protecting confidential information, we want to make it impossible to change from strict to loose permissions, even for users who have the authority to change classification labels. However, with the current Shield function, it is not possible to set the priority of changeability.
One possible way to achieve this is to allow users to set rankings for classifications or policies, and to limit the direction of the rankings.3 votesNot on the roadmap for FY25, will evaluate for FY26
-
Box Sheild can use some help
It would be great if there was a way to be able to enter notes on an incident. Also to flag an incident as complete and have it removed from the list.
3 votes -
Make available list of countries available for a Shield List
The input fields are not the easiest way to find a value to add to a Shield List. Naming convention is different across systems, so it would be helpful to know the values that are available to be added.
3 votes -
View only ability as admin to view Detection rules, policies, and lists.
Isolate the EDIT SHIELD CONFIGURATION co-admin permission to 2 different permissions:
- View-only detection rules, access policies, lists
- View, Edit, and Create Detection rules, access policies, and lists.
3 votes -
Ability to send Shield alerts to a Pager Duty email address for email integration.
It looks like I'm only able to notify users who are Shield co-admins whenever an alert is created. I would like to send alerts to a Pager Duty email address for email integration.
I would like to avoid creating a separate user for the purposes forwarding emails to pager duty. I would also like to avoid creating a forwarding rule on my own inbox.
Is it possible to send Shield alert notifications directly to non-user email addresses? If not, is this something the Box team is working on or can consider implementing?
3 votes -
Box Shield inherit classification on move/copy, not only on upload
Box Shield needs to have the ability for files to inherit the classification of the containing folder during a move or copy. Currently, a file will only inherit the classification if it is uploaded to the folder with a certain classification. Example:
File A has a classification of "Confidential" and is moved/copied to a folder that has an "Internal" classification. File A will not automatically inherit the "Internal" permission, and it either needs to be manually changed to "Internal", or have the entire containing folder re-classified as "Internal" so that all containing files then inherit the "Internal" classification.
However, if…
3 votes -
Threat Detection Reporting
My customer would like to get a report of the activities that detection rule is processing to ensure that is actually working. They have one rule (suspicious session) that has not generated any hits and thus they don’t know if it’s actually doing anything or not.
3 votes -
We want the ability for Download policies to also trigger on unusual download activity by external collaborators
We see external collaborators with high download activity using accounts outside of our enterprise (ie: gmail, yahoo?). The business is getting quite frustrated that they cannot report on these email addresses.
3 votesThis is quite complex to implement, we are researching to figure out how best to fix this.
-
Request: Rich Shield dashboard
Request for Shield Dash board
The information of the graphs is so simple.
Could you make the rich insight?
For example, whne the targeted user who caused anomalous download started downloading a lot f contents, how much increased #s of DL day by day, Week by week etc.Currently we need to export user activity report if we want to know more. so rich insight will be helpful for Box admin.
2 votes -
Shield admin notifications to other admins when files are marked safe, etc
Interest in letting all Shield admins know when a file has been marked safe, useable, etc by another Shield admin
2 votes -
Allows the report to see the classification labels that have been applied in the past
In the User Activity Report, when a classification label is changed, it is logged. However, it does not record from which label was changed to which label..
One user currently sets the privilege to edit classification labels to editors (general employees). However, the more users with editing privileges, the greater the security risk. The only way to avoid this risk is to limit the scope of editing privileges to the owner or co-owner (superior). In that case, it would be too inconvenient, since it would be necessary to apply to the superior for a change in the classification label.
By…2 votes -
Give download rights for analysis without flagging safe
Hi, we have a process of validating in a secured sandbox environment documents that are flag as malicious to be analyse to put back into circulation if it's a false positive. Right now, Box Shield co-admin cannot retrieve those documents. Support suggest to flag them as false positive, download them and revert them back. It is a horrible practice to have to do that. It gives false information to the AI and it prevents automation via webhooks.
I have a multiple async jobs I want to run when a file becomes a false positive. This way of downloading is dangerous…
2 votes -
Shield Requests
Currently Box sheild has the capability to Scan only newly updated/created files or only if the existing file is modified. In simple terms the scan happens only for the newly created version of the files and not any existing files before Box shield is being implemented.
Feature request:
We need to have the option of Scanning all the files at rest & transit in Box irrespective of when it was created/ modified, etc so that it can detect any malware on already available files as well.
Currently Box only encrypts the file with a red banner on top if malware…
2 votes -
Enhanced Auto Classification and File Criteria for All File Types in Box
We would like to have the ability to specify all file types in the file criteria for auto classification. Since there is currently no way to cascade classifications to all files excluding folders (categorizing confidential info on a file-by-file basis), I would like a feature where all files can be classified.
With the current individual extension specifications, it is not possible to use wildcard characters, so we would like to reduce the potential for information leakage due to intentional extension changes.
2 votes -
Display settings for classification labels
We would like to be able to temporarily not display (not disclose) classification labels within a tenant after they are created, but in that case, we need to delete all classification label settings, and it is time-consuming to set them each time, so we would like to be able to select whether to show or hide them.
2 votes -
Create an audit only mode for classification policies
Auto-classification policies can receive an audit only mode similar to Shield Access Policies. Essentially an auto-classification policy in audit only mode will return a list of files that would have triggered an auto-classification upon upload or interaction. Shield administrators can then review the list of files that would have been classified and review for accuracy.
Decreases risk of misclassifying content due to policy misconfigurations.
2 votes -
Shield Blocked Email Addresses (Not only Domains)
As of right now it is not possible to block a specific user with the external collaboration access policy restriction. This is only applicable for blocking domains. This request is to be able to add a specific user to the blocked list by email address.
2 votes -
Ability to update/add definition of Virus/Malware
Ability to submit a malicious file so it can be added to the definition for Virus Scan feature.
2 votes -
Permanently mark a file as not malicious
We had a user (with Box Drive) who had a file marked as malicious. She apparently made a change to a local copy and added it back to her folder, causing it to be marked as malicious a second time. In fairness, the hash is different, since the file changed. When I looked at the first event, I ran the file through VT, and the results came back as all clean, so I marked it as not malicious. The user was still not able to access the file. I had to go back into Shield, find the second instance, scan…
2 votes -
Box Shield temporary user-level Suspicious Location exemptions (e.g. team member is traveling)
Box Shield temporary user-level Suspicious Location exemptions (e.g. team member is traveling)
2 votes
- Don't see your idea?