We would like the ability to support Regular Expressions (REGEX) for creating auto-classifications rules in Shield. This would greatly enhance how much we can leverage the capability

As a administrator, I would like the ability to turn off certain Access Control Restrictions across all collaborators vs. limiting it to specific collaborator roles.

Example:
Download / Print Restrictions.

we would still like users to leverage the app but, not allow them to download/print to their mobile device. Yes, the app function can be disable enterprise-wide but, we want to limit it to a specific function within the mobile app regardless of their collaborator role.

Allow for user level exclusion for suspicious location alerts. This is helpful in the event that users are traveling across locations and various IP addresses.

Current access policy allows for external collaboration with a valid business justification, but we would also like to have the admin or folder owner approve the request to share externally, before the collaboration is sent. The current design doesn't allow for any validation and could potentially lead to content being shared with a restricted audience. Once the exception is approved, the collaboration could be set.

There may be certain countries a Box customer may be prohibited from sharing with under any circumstance. I suggest making it possible to whitelist or blacklist entire countries by allowing Shield Lists of countries to be included in Access Policies.

Shield lists are not currently editable using an API endpoint. In order to make it possible to automate adding and removing entries to lists, I suggest making it possible to create/view/edit/delete shield lists using the Box API.

Detect and alert if a user deletes an unusual number of files / folders

As part of Governance it is possible to move certain file types to a Quarantine folder. This is useful for a lot of ransomwares, as they change the extension of files.

Currently this "old" functionality has not yet been moved to Shield. Shield does have a malware detection, which uses threat detection technology. We would like to have the ability to extend this with a list of known extensions.

Enable SMS notifications from Box Shield Threat Detection.

Same notifications you get over email or inside the dashboard, but over text.

Automatically re-route content flagged by Box Shield Malware scan to a specific folder owned by IT/InfoSec/Admin. After the IT/InfoSec/Admin team approved the folder/file as safe, then release it back to its original location.

Download restriction restricts external users (editor permission) from moving content within folders they have access to. There should be an option to restrict download but also allow for moving and copying within folders that have the classification policy because to an end user, this is not a download function.

As a user, I want to be able to exclude my company domains from the Shield email address autoclassification trigger, so that policies are not being applied to internal emails, just external PII

We would like to be able to restrict users from uploading files and folders to folders to which BoxShield's "External Collaborator Restrictions" have been applied by dragging and dropping them into the browser.
By granting users the authority to edit and prohibiting uploads, it will be possible to more clearly distinguish between file management and access authority management, and allow editing while maintaining a level of security.

(In Japanese)
BoxShieldの「外部コラボレータ制限」を適用しているフォルダに、ブラウザへのドラッグ＆ドロップでファイル・フォルダをアップロードすることを制限できるようにしてほしいです。
ユーザーに編集する権限を付与し、アップロードを禁止する事でファイル管理及びアクセス権限の管理をより明確に区別し、セキュリティレベルを保ちつつ編集を可能とする事が可能になると考えられます。

Interested in an inclusion/exclusion list FOR downloading files, as part of a Shield access policy.

Ex: If Owners/Co-Owners/Editors are OK to download they want control the file types they can download. I know you can control this by just creating a separate classification and policy but that could cause too many of them. Better to create an filetype inclusion list

As a user, when I apply a classification, I want to see them in order of sensitivity, as opposed to alphabetical

Our security has deemed a single email as suspicious. We would like to block this single email from connecting to our Box, or being collaborated into our Box.

With Shield we can block the whole domain, but that approach is too broad and would limit too many valid email addresses.

Extending threat detection ALERTS to take action on a user's access would be very valuable. I've heard lots of customers request having a user's account deactivated if they access Box from a suspicious location. Right now, there is not a way to do this through the core Box application, it has to be done through custom scripting or with another tool.

In addition to the Shield Dashboard, an option to export all past threat detection alerts

Auto-classification matches are currently stored within metadata on a file. If auto-classification classifies a piece of content, we'd like for the classification label indicator on a file (or hovering over the label) to show what criteria was met which requires a specific label. The purpose of this is to have a visual indicator to reinforce the sensitivity of content within a file.