Help shape the future of Box
Welcome to Box Pulse, our product feedback tool powered by UserVoice. Got an idea for how to improve Box? Share it with us and gather support or vote on other people's ideas. Your feedback is essential to informing roadmap decisions and shaping the future of our products. Thanks for joining our community!
See user guide here.
185 results found
-
Ability to scope Malicious Content Rules by User/Group/Shield Lists
Currently malicious content rules apply to all users. To test moving from an audit/detection-only stance to enforcement, it would be useful to be able to create multiple rules that are scoped to specific users/groups/Shield Lists.
This will allow us to keep most users in an audit/detection-only rule, while we test enforcement with a pilot group in another rule.1 vote -
Allow groups to be specified as 'notified to' in Box Shield Threat Detection Rules
Only user accounts can be specified for the 'Notification Destination' of the Threat Detection rules in Box Shield.
Since maintenance is required when the person in charge changes, it should be possible to specify a group.■In Japanese:
Box shieldに存在する検出ルールの「通知の送信先」は、ユーザーアカウントのみが指定できます。
担当者が変わったときメンテナンスが必要になるので、グループを指定できるようにしてください。1 vote -
Shield access policy to restrict shared link creation
Have the option to restrict shared link creation with Box Shield access policy
1 vote -
Display settings for classification labels
We would like to be able to temporarily not display (not disclose) classification labels within a tenant after they are created, but in that case, we need to delete all classification label settings, and it is time-consuming to set them each time, so we would like to be able to select whether to show or hide them.
2 votes -
Shield alert to show more than 90 days
Currently the Shield dashboard only show up to 90 days of alerts.
I would like to have the option to have all of the past alert and be able to filter it by custom date filter.28 votes -
Anomalous Download Alerts for external users
For the Anomalous Download Alerts, I would like it to apply to external users too so that if they are invited to our tenant's folder and they start downloading a lot I get an alert.
10 votes -
Folder path for Malware
Add folder path to the exclusions of the malware scan with Shield. Use case is around safe samples of Malware being housed in Box
6 votes -
Export Control (ITAR/EAR) support by Box Shield (Increase the maximum number of Shield Classifications & Applying a classification label to
In the case of having global offices/teams, contents related to Export control are dispersed globally. However, the contents need to be in compliance for Export control.
The following two enhancements work well for supporting ITAR/EAR with dispersed contents in one Box entity:
1. Increase the maximum number of Shield Classifications - There is a limitation Classification (it's 25) now. To create combination label via country-base for ITAR/EAR, it requires a larger number of classifications.
2. Applying a classification label to a specific group - this ability is required to support large number of Classification (above enhancement).22 votes -
Secure admin only download of 'malicious' files for analysis
Admins should be able to download Box Shield tagged malware without marking the file safe for everyone. That way a security admin could download the file and scan it with their own security tools. That’s the only real way to diagnose if a file is malicious or just a false positive.
Asking us to mark it safe by chatting with the user is far from best practice
1 vote -
Additional Information BoxShield Anomalous Download Alerts
Include further information within the anomalous download alert to show which application\service was used. Currently, this is only available from the user activity report, which takes a while to generate.
If the hostname and device type could be included, this would help decipher if anomalous downloads have taken place acorss multipe devices.
3 votes -
internal collaboration
Add a "Internal Collaboration Restriction" option for Box shield access policy. My company uses file classifications that are intended to inform users so that they know to restrict sharing of files to only those who need to know. It would be great to use the justification feature that already exists in the External collaboration restriction but within our domain.
1 vote -
Better information on Alert Information for Location Detection Rules
Please add the country below the IP on a Shield Alert Email for Allowed countries Detection rules notification. This keeps us from having to log into box to see what country the violation occurred in..
2 votes -
Block file request via classification / access policy
Currently there is no security control for access policies that allows to block file requests.
We created a classification "external" with the security control "External Collaboration Restriction". However it is still possible that externals upload files to these folders. To us this is also a way of external collaboration. And this also creates the risk of mixing internal and external files in folders that are classified as internal.3 votes -
Box Shield Delete Restriction Security Control
Adding an additional Shield security control to restrict the ability of Editors to send content to Trash would be a great way to fill the gap between Viewer Uploader and Editor permissions. One of the primary use cases for Viewer Uploader is the ability to collaborate on content without being able to delete that content but in its current state, Viewer Uploaders are also restricted from other important collaborative features like inviting collaborators.
18 votes -
Wish to improve the custom terms in the classification settings to include the string custom term + string in the search.
The following rules apply to custom terms in the classification settings:
[Reference]
Also, the characters surrounding any match must be of a different type (letters or digits) from the adjacent characters within the word. For example:if the policy looks for "Acme-Internal", the scan will match on "Acme Internal", "acme-internal", "Acme - Internal", "Acme (INTERNAL)", "Acme: Internal", "728Acme-Internal", "Acme - Internal728", "Acme-Internal-728", and so on, but not "Acme-Internalization", or "Acem-Internal".
if the policy looks for "AcmeInternal", the scan will match on "acmeinternal", "AcmeINTERNAL", "AcmeInternal4u", and so on, but not "Acme Internal", "Acme_Internal", "AcmenInternalization", "Acme"[Request]
Japanese is a language in…1 vote -
Create an audit only mode for classification policies
Auto-classification policies can receive an audit only mode similar to Shield Access Policies. Essentially an auto-classification policy in audit only mode will return a list of files that would have triggered an auto-classification upon upload or interaction. Shield administrators can then review the list of files that would have been classified and review for accuracy.
Decreases risk of misclassifying content due to policy misconfigurations.
2 votes -
Shield Blocked Email Addresses (Not only Domains)
As of right now it is not possible to block a specific user with the external collaboration access policy restriction. This is only applicable for blocking domains. This request is to be able to add a specific user to the blocked list by email address.
2 votes -
Shield Dashboard to search files
I would like to have a feature in Shield Dashboard to search files to malware deep scan result. This is because the admin receive feedback about a specific file from end users and so the admin would like to check that file easily from the dashboard.
18 votes -
Ability to configure Box shield alerts
Be able to set Shield alert priority based on the severity (quantity, amount, % change) of the Box Shield anomalous behavior. Today the Shield alerts are static and apply to the category as whole and not related to a quantifiable measure of risk. a 100% increase is treated the same as a 10,000% increase.
2 votes -
Encrypt shield downloads
Encrypted downloads of files flagged as malicious so analysts can safely move files to a sandbox for further analysis.
3 votes
- Don't see your idea?