Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
254 results found
-
File Security Classification, non-compliance label
When viewing a folder, it is currently not possible to know if there are files within the folder structure that have a differing classification label from the one at the root level. This "non-compliance" could potentially be problematic, or even a signal that someone has inadvertently changed a classification. It would be nice to have some kind of visual indicator that the top-level classification label is not 100% cascaded throughout the folder/file structure below it in the waterfall.
2 votes -
Box Shield
Can we have more granular on the detection rules, e,g, down to user groups, or individual account level - allowing customers to set priorities as high for some user groups, but low for others. For some users, a customer may expect high levels of downloads/activity in Box and this may be in peaks and troughs - therefore potentially a lower priority, whereas with execs this activity should be treated as a higher priority and greater risk.
2 votes -
Visibility and controls on externally owned content
Box admins should be able to restrict their users from uploading or moving sensitive content to folders that are owned by another Box instance. There should be controls around what defines sensitive content. Box admins should have visibility into what's uploaded or moved into the external folders in reports.
2 votes -
Localize the name of "Classification" metadata template to user's language
User cannot name of "Classification" metadata template which is automatically created when the user create Classification policy. At least it should localize to Box admin's language (ex "分類" in Japanese)
2 votes -
Shield alerting admins when users "download" from Box Drive
A customer is reporting difficulty using Box Shield’s Anomalous Download detection due to how downloads are currently defined when Box Drive is in use. Box Shield flags a “download” whenever a user expands or opens a folder in Box Drive. As a result, routine navigation actions are recorded as downloads, creating noise in the anomaly signals. The customer is asking whether anomalous download detection can be refined to trigger only on intentional file downloads (e.g., explicit download actions), rather than folder expansion or passive access via Box Drive.
1 vote -
Create a Hub Restriction for Box Shield
Add the ability to apply a Hub restriction (e.g., prevent content from being added to a Hub) in Shield. Users would be able to apply the Hub restriction within an access policy based on a classification label or content type. This would prevent unintentional internal and external access to content in a Hub and reduce confusion for external users that may be blocked from accessing content in a Hub due to other Shield external collaboration restrictions. This would be especially helpful for highly regulated industries like public sector agencies, government contractors, and financial services.
1 vote -
In Box Shield, there is a case where it is not possible to mark a file as safe.
Currently, when the “Malicious Content” setting in Box Shield is disabled in the owner’s tenant but enabled in the tenant of the user performing the action, if content is detected as malicious, the detected file does not appear on the owner’s dashboard and cannot be marked as safe. As a result, the corresponding alert cannot be cleared, which leads to a situation where the file cannot be used in Box. If the file needs to be used, it must be exchanged outside of Box. We would like to request a feature enhancement to address this.
現状、所有者側のテナントでBox Shieldの「悪意のあるコンテンツ」を無効化しており、操作を行ったユーザーが所属しているテナントが「悪意のあるコンテンツ」を有効化しているときに悪意のあるコンテンツとして検知されると所有者側のダッシュボードには検知されたファイルが表示されず、安全なファイルとしてマークすることができない。
それにより、該当アラートを削除することができないため、該当ファイルをBoxにて使用することができない状況が発生する。
対象ファイルを使用したい場合、Box以外の場所でやり取りを行う必要が発生してしまうため、機能改善を要望する。1 vote -
Add Integration by App ID/Client ID for Shield Access Policy Integration Restriction
When creating a Security Rule for a Shield Access Policy, when setting an Integration Restriction, you can only add the integration by name, and not by client ID or app ID. We have many apps with similar names, so using the client ID or app ID would help us restrict the correct app.
1 vote -
pop-up the warning information and provide the override windows when sending the invitation
Box Shield/Access policy , when choose the option -- provide the justification to External Collaboration Restriction Settings
Expected:
pop-up the warning information and provide the override windows when sending the invitation1 vote -
More Detail in Deep Scan Detection
Deep scans frequently alert with an "unknown" malware family and a description of "This file has characteristics that are similar to previously identified malicious content." This is not enough information to identify a potential threat within otherwise legitimate looking documents.
The detections details should identify what triggered the detection. Was it a macro, the phrasing of the content, an embedded link, etc.? If it was a link, what link(s) is suspicious.
1 vote -
Shield Alerts and Admin Sudo Activity
As an admin, I will need to sign in as my users for tasks, troubleshooting, etc. When we do so, all actions taken as that user while an admin is signed in as them should be noted as such in all reporting. For instance, I signed in as a user yesterday and we received an alert for the activities I performed as them, but nothing pointed to me being the actor. Threats occur with end users and admins, and full, transparent visibility is vital in the event of an incident.
1 vote -
Ability to see level at which a classification was applied.
Ability to see level at which a classification was applied, much like permissions.
1 vote -
Viewer uploader Role is restricted of downloading classified documents
Currently, users with the Viewer Uploader role are restricted from downloading classified content when Box Shield is enabled.
Promotion to Editor role is unwanted as it might lead to data deletion and editing.
can we allow this feature so we can keep enforcing the policy?
at the time being we can only allow owners, co-owners and Editor to do so. see attached1 vote -
Suspicious Location Shield Alert
Allow for tagging Safe Locations against particular users, rather than having to exclude a user from alerts all together. Example; Offshore support in a country like India, where this shouldn't be treated as a suspicious location for this particular user, even though the rest of the organisation is based in Australia
1 vote -
Request for Specification Update: Ensuring Classification Label Overwrite Upon Folder Relocation
When a folder that has classification labels assigned is moved into another folder governed by a classification policy with the 'Overwrite existing classification labels' option enabled, the labels are not being overwritten as expected. We kindly request that the system behavior be revised so that the existing labels are properly overwritten in accordance with the policy settings.
1 vote -
Unable to navigate between shield alerts easily
When wishing to browse through Shield Alerts, it is only possible by changing the alert ID number in the http://company.app.box.com/master/shield/alerts/nnnn
There should be a First, Previous, Next and Last option to scroll through those Alerts (any rule type) that are currently listed
1 vote -
Dashboard table of results should have additional columns available to display
In addition to the existing columns, there should also be available:
Target user ID
Data Residency Zone (related to Target user ID)number of anomalous downloads (for Anomalous Download rule type only)
gigabytes total anomalous downloads (for Anomalous Download rule type only)
All columns (apart from Alert ID) should be available to hide/display (via settings table)
1 vote -
Enhanced column functionality - sorting, width, display/hide, order and word-wrap
All columns shown in the table of results on Shield Dashboard should be:
- sortable
- hidden / displayed
- content word wrapped
- adjust column widths1 vote -
Provide a 'Clear all' filters button
With enhanced numbers of filters to choose from, the dashboard requires a 'Clear all' filters button
1 vote -
Enable a download to csv of the current list of alert details displayed
There is currently no suitable way of saving the viewed alert list to csv/excel. The only way I have found to do this is to highlight the range of rows, copy to clipboard, then paste to excel. HOWEVER this exports content to a SINGLE column - I've then had to create special formulae to extract the data to additional columns - ie Created, Rule name, rule type, target user etc
The download button should export the current list (all selected - ignoring pages) to a csv with all the displayed columns
The download should have ADDITIONAL columns (populated only for…
1 vote
- Don't see your idea?